RSS   Vulnerabilities for 'Filehub firmware'   RSS

2018-01-25
 
CVE-2018-5997

CWE-434
 

 
An issue was discovered in the HTTP Server in RAVPower Filehub 2.000.056. Due to an unrestricted upload feature and a path traversal vulnerability, it is possible to upload a file on a filesystem with root privileges: this will lead to remote code execution as root.

 
2018-01-24
 
CVE-2018-5319

CWE-200
 

 
RAVPower FileHub 2.000.056 allows remote users to steal sensitive information via a crafted HTTP request.

 


Copyright 2024, cxsecurity.com

 

Back to Top