Security Advisory

CVE-2023-31477

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-11 00:00:00

Last updated 2025-01-27 17:15:44

Assigner mitre

State PUBLISHED

Description

A path traversal issue was discovered on GL.iNet devices before 3.216. Through the file sharing feature, it is possible to share an arbitrary directory, such as /tmp or /etc, because there is no server-side restriction to limit sharing to the USB path.

← Browse all CVEs View on cve.org ↗