← back
CVE-2012-5969

CVE-2012-5969

EPSS 0.7%
Multiple directory traversal vulnerabilities on the Huawei E585 device allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the PATH_INFO of an sdcard/ request or (2) modify arbitrary files via a .. (dot dot) in the req_page parameter to en/sms.cgi.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-198239.htmhttp://www.kb.cert.org/vuls/id/871148