PT-2019-15380 · Xiaomi+1 · Xiaomi Mi Wifi R3G+1
Ultramangaia
+1
·
Published
2019-10-23
·
Updated
2024-03-09
·
CVE-2019-18371
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Xiaomi Mi WiFi R3G versions prior to 2.28.23-stable
Description
A directory traversal issue allows attackers to read arbitrary files due to a misconfigured NGINX alias. This can be exploited via the "api-third-party/download/extdisks../etc/config/account" endpoint, enabling attackers to bypass authentication.
Recommendations
For versions prior to 2.28.23-stable, update to version 2.28.23-stable or later to resolve the issue. As a temporary workaround, consider restricting access to the NGINX alias to minimize the risk of exploitation.
Exploit
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Nginx
Xiaomi Mi Wifi R3G