CVE-2017-14514 — Path Traversal in W15e Firmware

Severity

7.5HIGHNVD

EPSS

0.4%

top 38.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedSep 17

Latest updateMay 17

Description

Directory Traversal on Tenda W15E devices before 15.11.0.14 allows remote attackers to read unencrypted files via a crafted URL.

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

▶NVDtenda/w15e_firmwarev15.11.0.13_cn

GHSA

GHSA-59j5-7ccc-fgx9: Directory Traversal on Tenda W15E devices before 15↗2022-05-17

▶

CVEList

CVE-2017-14514: Directory Traversal on Tenda W15E devices before 15↗2017-09-17

▶