CyberSec.Space Logo
Back to CVE Browser

CVE-2021-31577

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1500%
EPSS Percentile11.76th
PublishedFeb 6, 2023
Last ModifiedNov 21, 2024

Vulnerability Description

In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.

Affected Platforms (CPE)

💻
Mediatek

En7580 Firmware

< tlm7.3.275.0-64
💻
Mediatek

En7528 Firmware

< tlm7.3.275.0-64

References & Advisories

🔗 https://corp.mediatek.com/product-security-acknowledgements
🔗 https://corp.mediatek.com/product-security-acknowledgements

Related Vulnerabilities

CVE-2021-024810.0

This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks ...

CVE-2021-2732910.0

Friendica 2021.01 allows SSRF via parse_url?binurl= for DNS lookups or HTTP requests to arbitrary domain names.

CVE-2021-138810.0

A vulnerability in an API endpoint of Cisco ACI Multi-Site Orchestrator (MSO) installed on the Application Services Engine could a...

CVE-2021-231710.0

Vulnerability in the Oracle Cloud Infrastructure Storage Gateway product of Oracle Storage Gateway (component: Management Console)...