CVE-2021-20121

The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is vulnerable to an authenticated arbitrary file read. An authenticated user with physical access to the device can read arbitrary files from the device by preparing and connecting a specially prepared USB drive to the device, and making a series of crafted requests to the device's web interface.
References
Link Resource
https://www.tenable.com/security/research/tra-2021-41 Exploit Third Party Advisory
https://www.tenable.com/security/research/tra-2021-41 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:telus:prv65b444a-s-ts_firmware:3.00.20:*:*:*:*:*:*:*
cpe:2.3:h:telus:prv65b444a-s-ts:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:45

Type Values Removed Values Added
References () https://www.tenable.com/security/research/tra-2021-41 - Exploit, Third Party Advisory () https://www.tenable.com/security/research/tra-2021-41 - Exploit, Third Party Advisory

Information

Published : 2021-10-11 17:15

Updated : 2024-11-21 05:45


NVD link : CVE-2021-20121

Mitre link : CVE-2021-20121

CVE.ORG link : CVE-2021-20121


JSON object : View

Products Affected

telus

  • prv65b444a-s-ts
  • prv65b444a-s-ts_firmware