← back
CVE-2017-16929

CVE-2017-16929

EPSS 12.9%
The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticated directory traversal vulnerability exploited by issuing a specially crafted request, allowing a remote attacker to read/write arbitrary files. This can be exploited via ../ sequences in the pathname to miner_file or miner_getfile.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/43231/unverifiedexploitdbwww.exploit-db.com/exploits/43231unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/tintinweb/pub/tree/master/pocs/cve-2017-16929https://www.exploit-db.com/exploits/43231/http://www.openwall.com/lists/oss-security/2017/12/04/3