CVE-2015-8228
Description
Directory traversal vulnerability in the SFTP server in Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200, and 3600 routers with software before V200R006SPH003 allows remote authenticated users to access arbitrary directories via unspecified vectors.
Risk Information
Base Score
5.3
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.543
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2015-8228 are affected in ar_firmware v200r006c10 | NCM |
| Vulnerabilities CVE-2015-8228 ,CVE-2016-6901 are affected in ar_firmware v200r006 | NCM |
| Vulnerabilities CVE-2015-8228 are affected in ar_firmware v200r005c30 | NCM |
| Vulnerabilities CVE-2015-8228 are affected in ar_firmware v200r005c20 | NCM |
| Vulnerabilities CVE-2015-8228 are affected in ar_firmware v200r005c10 | NCM |
| Vulnerabilities CVE-2015-8228 ,CVE-2016-6901 are affected in ar_firmware v200r005 | NCM |
| Vulnerabilities CVE-2015-8228 are affected in ar_firmware v200r003 | NCM |
| Vulnerabilities CVE-2015-8228 are affected in ar_firmware v200r002 | NCM |
| Vulnerabilities CVE-2015-8228 are affected in ar_firmware v200r001 | NCM |
| Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability (CVE-2015-8228) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234