Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Path Traversal Vulnerability in Infinera G42
Vulnerability Description
A path traversal vulnerability of the WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows remote authenticated users to download all OS files via HTTP requests. Details: Lack or insufficient validation of user-supplied input allows authenticated users to access all files on the target machine file system that are readable to the user account used to run the httpd service.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Infinera G42 安全漏洞
Vulnerability Description
Infinera G42是美国Infinera公司的一款光网络的模块平台。 Infinera G42 R6.1.3版本存在安全漏洞,该漏洞源于路径遍历问题,可能导致文件下载。
CVSS Information
N/A
Vulnerability Type
N/A