CVE-2020-35391
high-risk
Published 2021-01-01
Tenda N300 F3 12.01.01.48 devices allow remote attackers to obtain sensitive information (possibly including an http_passwd line) via a direct request for cgi-bin/DownloadCfg/RouterCfm.cfg, a related issue to CVE-2017-14942. NOTE: the vulnerability report may suggest that either a ? character must be placed after the RouterCfm.cfg filename, or that the HTTP request headers must be unusual, but it is not known why these are relevant to the device's HTTP response behavior.
Do I need to act?
!
46.8% chance of exploitation in next 30 days
EPSS score — higher than 53% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.6/10
Critical
ADJACENT_NETWORK
/ LOW complexity
Affected Products (1)
F3 Firmware
Affected Vendors
References (4)
51
/ 100
high-risk
Severity
29/34 · Critical
Exploitability
17/34 · Moderate
Exposure
5/34 · Minimal