Vulnerabilities > CVE-2019-3404 - Unspecified vulnerability in 360 F5C Router Firmware and P0 Router Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

360

NVD

Published: 2020-03-04

Updated: 2020-08-24

Summary

By adding some special fields to the uri ofrouter app function, the user could abuse background app cgi functions withoutauthentication. This affects 360 router P0 and F5C.

Vulnerable Configurations

Part	Description	Count
OS	360 360 P0 Router Firmware 3.1.1.65150 360 F5C Router Firmware 3.1.1.65150	2
Hardware	360 360 P0 Router - 360 F5C Router -	2

References

https://security.360.cn/News/news/id/218.html