The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is vulnerable to an authenticated arbitrary file read. An authenticated user with physical access to the device can read arbitrary files from the device by preparing and connecting a specially prepared USB drive to the device, and making a series of crafted requests to the device's web interface.
References
Link | Resource |
---|---|
https://www.tenable.com/security/research/tra-2021-41 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: tenable
Published: 2021-10-11T16:48:55
Updated: 2021-10-11T16:48:55
Reserved: 2020-12-17T00:00:00
Link: CVE-2021-20121
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-11T17:15:07.450
Modified: 2021-10-18T18:44:13.643
Link: CVE-2021-20121
JSON object: View
Redhat Information
No data.
CWE