CVE-2017-7461

{"id": "CVE-2017-7461", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 4.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 1.2}]}, "published": "2017-04-11T15:59:00.323", "references": [{"url": "https://www.exploit-db.com/exploits/41829/", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the web-based management site on the Intellinet NFC-30ir IP Camera with firmware LM.1.6.16.05 allows remote attackers to read arbitrary files via a request to a vendor-supplied CGI script that is used to read HTML text file, but that does not do any URI/path sanitization."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en el sitio de gesti\u00f3n basado en web en la Intellinet NFC-30ir IP Camera con firmware LM.1.6.16.05 permite a atacantes remotos leer archivos arbitrarios a trav\u00e9s de una solicitud a una secuencia de comandos CGI proporcionada por el proveedor que es utilizada para leer archivo de texto, pero que no realiza ninguna desinfecci\u00f3n de URI/path."}], "lastModified": "2017-04-18T15:56:37.807", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:intellinet-network:nfc-30ir_firmware:lm.1.6.16.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39140A89-2552-4D3E-959D-4A9C3877E862"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:intellinet-network:nfc-30ir:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "85C770A3-2683-4303-81D1-041F5125A915"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}