Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to delete arbitrary files on disk via the admin/system/admin/certificates/delete action.
References
Link | Resource |
---|---|
https://www.tenable.com/security/research/tra-2020-57 | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-10-01 13:15
Updated : 2020-10-01 16:24
NVD link : CVE-2020-5788
Mitre link : CVE-2020-5788
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
teltonika-networks
- trb245
- trb245_firmware