Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Path Traversal in NetModule NSRW
Vulnerability Description
The NetModule NSRW web administration interface is vulnerable to path traversals, which could lead to arbitrary file uploads and deletion. By uploading malicious files to the web root directory, authenticated users could gain remote command execution with elevated privileges. This issue affects NSRW: from 4.3.0.0 before 4.3.0.119, from 4.4.0.0 before 4.4.0.118, from 4.6.0.0 before 4.6.0.105, from 4.7.0.0 before 4.7.0.103.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
NetModule NSRW 路径遍历漏洞
Vulnerability Description
NetModule NSRW是NetModule公司的一系列路由器软件。 NetModule NSRW存在安全漏洞,该漏洞源于存在路径遍历漏洞,这可能导致任意文件上传和删除,经过身份验证的攻击者利用该漏洞可以获得具有提升权限的远程命令执行。
CVSS Information
N/A
Vulnerability Type
N/A