CVE-2023-0114 LOW

CVE-2023-0114: Netis Netcore Router Backup param.file.tgz cleartext storage in a file or on disk

Vendor Netis
Product Netcore Router
Weakness CWE-313
Published January 7, 2023
Last update August 2, 2024

CVSS base score

3.3/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to cleartext storage in a file or on disk. Local access is required to approach this attack. The identifier of this vulnerability is VDB-217592.

Key dates

02Disclosure timeline

January 7, 2023 CVE published
August 2, 2024 Record updated