CyberSec.Space Logo
CVEブラウザに戻る

CVE-2021-31577

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1500%
EPSS Percentile11.76th
Published2023年2月6日
Last Modified2024年11月21日

Vulnerability Description

In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.

Affected Platforms (CPE)

💻
Mediatek

En7580 Firmware

< tlm7.3.275.0-64
💻
Mediatek

En7528 Firmware

< tlm7.3.275.0-64

References & Advisories

🔗 https://corp.mediatek.com/product-security-acknowledgements
🔗 https://corp.mediatek.com/product-security-acknowledgements

関連する脆弱性情報

CVE-2021-2124310.0

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, a Kubernetes REST endpoint exposes two methods that deser...

CVE-2021-021110.0

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon ...

CVE-2021-4155610.0

sqclass.cpp in Squirrel through 2.2.5 and 3.x through 3.1 allows an out-of-bounds read (in the core interpreter) that can lead to ...

CVE-2021-2124410.0

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, There is a vulnerability that enabled pre-auth server sid...