1. Home
  2. CVE Database
  3. CVE-2017-16959
MEDIUM · 6.5

CVE-2017-16959

The locale feature in cgi-bin/luci on TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allows remote authenticated users to test for the existence of arbitrary files by making an operation=write;locale...

Vulnerability Description

The locale feature in cgi-bin/luci on TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allows remote authenticated users to test for the existence of arbitrary files by making an operation=write;locale=%0d request, and then making an operation=read request with a crafted Accept-Language HTTP header, related to the set_sysinfo and get_sysinfo functions in /usr/lib/lua/luci/controller/locale.lua in uhttpd.

CVSS Score

6.5

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
Tp-LinkTl-Wvr300 Firmware-
Tp-LinkTl-Wvr300-
Tp-LinkTl-Wvr302 Firmware-
Tp-LinkTl-Wvr302-
Tp-LinkTl-Wvr450 Firmware-
Tp-LinkTl-Wvr450-
Tp-LinkTl-Wvr450L Firmware-
Tp-LinkTl-Wvr450L-
Tp-LinkTl-Wvr450G Firmware-
Tp-LinkTl-Wvr450G-
Tp-LinkTl-Wvr458 Firmware-
Tp-LinkTl-Wvr458-
Tp-LinkTl-Wvr458L Firmware-
Tp-LinkTl-Wvr458L-
Tp-LinkTl-Wvr458P Firmware-
Tp-LinkTl-Wvr458P-
Tp-LinkTl-Wvr900G Firmware-
Tp-LinkTl-Wvr900G-
Tp-LinkTl-Wvr900L Firmware-
Tp-LinkTl-Wvr900L-

Related Weaknesses (CWE)

CWE-22

References

FAQ

What is CVE-2017-16959?

CVE-2017-16959 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The locale feature in cgi-bin/luci on TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allows remote authenticated users to test for the existence of arbitrary files by making an operation=write;locale...

How severe is CVE-2017-16959?

CVE-2017-16959 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-16959?

Check the references section above for vendor advisories and patch information. Affected products include: Tp-Link Tl-Wvr300 Firmware, Tp-Link Tl-Wvr300, Tp-Link Tl-Wvr302 Firmware, Tp-Link Tl-Wvr302, Tp-Link Tl-Wvr450 Firmware.