Statements (21)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:security
|
| gptkbp:affects |
gptkb:MikroTik_RouterOS
|
| gptkbp:attack_vector |
gptkb:Webfig
gptkb:Winbox |
| gptkbp:authentication_required |
no
|
| gptkbp:CWE_ID |
gptkb:CWE-22
|
| gptkbp:describes |
An authenticated remote attacker can read arbitrary files from the device filesystem via Winbox or Webfig interfaces.
|
| gptkbp:discoveredBy |
2018
|
| gptkbp:exploits |
yes
|
| gptkbp:hasCVSSScore |
9.1
|
| https://www.w3.org/2000/01/rdf-schema#label |
CVE-2018-14847
|
| gptkbp:impact |
information disclosure
|
| gptkbp:patchedBy |
gptkb:MikroTik_RouterOS_6.40.9
gptkb:MikroTik_RouterOS_6.42.7 gptkb:MikroTik_RouterOS_6.43rc3 |
| gptkbp:publicationDate |
2018-07-23
|
| gptkbp:vulnerableTo |
gptkb:CVE-2018-14847
arbitrary file read directory traversal |
| gptkbp:bfsParent |
gptkb:VPNFilter
|
| gptkbp:bfsLayer |
6
|