CVE-2023-0114 — LOW (3.3) — White Hats Nepal

Vulnerability Description

A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to cleartext storage in a file or on disk. Local access is required to approach this attack. The identifier of this vulnerability is VDB-217592.

CVSS Score

3.3

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Netis-Systems	Netcore Router Firmware	-
Netis-Systems	Netcore Router	-

Related Weaknesses (CWE)

CWE-313

References

https://vuldb.com/?ctiid.217592Third Party AdvisoryVDB Entry
https://vuldb.com/?id.217592Third Party AdvisoryVDB Entry
https://vuldb.com/?ctiid.217592Third Party AdvisoryVDB Entry
https://vuldb.com/?id.217592Third Party AdvisoryVDB Entry

FAQ

What is CVE-2023-0114?

CVE-2023-0114 is a vulnerability with a CVSS score of 3.3 (LOW). A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. Th...

How severe is CVE-2023-0114?

CVE-2023-0114 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-0114?

Check the references section above for vendor advisories and patch information. Affected products include: Netis-Systems Netcore Router Firmware, Netis-Systems Netcore Router.