CVE-2014-3150

Name of the Vulnerable Software and Affected Versions: Livebox version 1.1

Description: The issue allows remote authenticated users to upload arbitrary configuration files, download the configuration file, or obtain sensitive information via crafted Javascript.

Recommendations: For Livebox version 1.1, consider restricting access to configuration files and sensitive information to prevent unauthorized uploads or downloads until a patch is available. As a temporary workaround, consider disabling Javascript execution in the Livebox interface to minimize the risk of exploitation.