SecuritySpace - CVE-2018-3949

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2018-3949

Description: An exploitable information disclosure vulnerability exists in the HTTP server functionality of the TP-Link TL-R600VPN. A specially crafted URL can cause a directory traversal, resulting in the disclosure of sensitive system files. An attacker can send either an unauthenticated or an authenticated web request to trigger this vulnerability.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-3949
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0618
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0618

CVE ID:	CVE-2018-3949
Description:	An exploitable information disclosure vulnerability exists in the HTTP server functionality of the TP-Link TL-R600VPN. A specially crafted URL can cause a directory traversal, resulting in the disclosure of sensitive system files. An attacker can send either an unauthenticated or an authenticated web request to trigger this vulnerability.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2018-3949 https://talosintelligence.com/vulnerability_reports/TALOS-2018-0618 https://talosintelligence.com/vulnerability_reports/TALOS-2018-0618