13 Oct 2021
Vulnérabilité CVE-2021-20124 CVE Vulnerability
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download functionality of the WebServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges. (CVSS:0.0) (Last Update:2021-10-13)
Vulnerability Details : A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download functionality of the WebServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges. Publish Date : 2021-10-13 Last Update Date : 2021-10-13 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2021-20124
- References For CVE-2021-20124
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2021-20124There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |