CVE-2019-18922

high-risk

Published 2019-11-29

A Directory Traversal in the Web interface of the Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3 [1.00.047] allows unauthenticated attackers to read arbitrary system files via a GET request. NOTE: This is an End-of-Life product.

Do I need to act?

87.6% chance of exploitation in next 30 days

EPSS score — higher than 12% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (1)

At-Gs950\/8 Firmware

Affected Vendors

Alliedtelesis

References (6)

Third Party Advisory http://packetstormsecurity.com/files/155504/Allied-Telesis-AT-GS950-8-Directory-...

Mailing List http://seclists.org/fulldisclosure/2019/Nov/31

Third Party Advisory https://pastebin.com/dpEGKUGz

Third Party Advisory http://packetstormsecurity.com/files/155504/Allied-Telesis-AT-GS950-8-Directory-...

Mailing List http://seclists.org/fulldisclosure/2019/Nov/31

Third Party Advisory https://pastebin.com/dpEGKUGz

/ 100

high-risk

Severity 26/34 · High

Exploitability 20/34 · Moderate

Exposure 5/34 · Minimal