Vulnerabilities > CVE-2023-0114 - Cleartext Storage in a File or on Disk vulnerability in Netis-Systems Netcore Router Firmware

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

netis-systems

CWE-313

NVD

Published: 2023-01-07

Updated: 2024-05-17

Summary

A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to cleartext storage in a file or on disk. Local access is required to approach this attack. The identifier of this vulnerability is VDB-217592.

Vulnerable Configurations

Part	Description	Count
OS	Netis-Systems Netis Systems Netcore Router Firmware -	1
Hardware	Netis-Systems Netis Systems Netcore Router -	1

Common Weakness Enumeration (CWE)

CWE-313 - Cleartext Storage in a File or on Disk

References

https://vuldb.com/?ctiid.217592
https://vuldb.com/?id.217592