CVE-2016-10106

moderate-risk

Published 2017-01-03

Directory traversal vulnerability in scgi-bin/platform.cgi on NETGEAR FVS336Gv3, FVS318N, FVS318Gv2, and SRX5308 devices with firmware before 4.3.3-8 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the thispage parameter, as demonstrated by reading the /etc/shadow file.

Do I need to act?

0.81% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Affected Products (4)

Srx5308 Firmware

Fvs336Gv3 Firmware

Fvs318Gv2 Firmware

Fvs318N Firmware

Affected Vendors

Netgear

References (8)

Patch http://kb.netgear.com/30739/Path-Traversal-Attack-Security-Vulnerability

http://www.securityfocus.com/bid/95204

http://www.securitytracker.com/id/1037548

https://twitter.com/mantislesin/status/816618162770821120

Patch http://kb.netgear.com/30739/Path-Traversal-Attack-Security-Vulnerability

http://www.securityfocus.com/bid/95204

http://www.securitytracker.com/id/1037548

https://twitter.com/mantislesin/status/816618162770821120

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 3/34 · Minimal

Exposure 10/34 · Low