Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Arris VIP1113 devices through 2025-05-30 with KreaTV SDK allow file overwrite via TFTP because a remote filename with a space character allows an attacker to control the local filename.
CVSS Information
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对候选路径的不恰当保护
Vulnerability Title
Arris VIP1113 安全漏洞
Vulnerability Description
Arris VIP1113是美国Arris公司的一款用于高清 IPTV 服务的机顶盒。 Arris VIP1113 2025-05-30及之前版本存在安全漏洞,该漏洞源于TFTP中带空格字符的远程文件名可能导致本地文件名控制。
CVSS Information
N/A
Vulnerability Type
N/A