CVE-2023-0114: Netis Netcore Router Backup param.file.tgz cleartext storage in a file or on disk
First published: Sat Jan 07 2023(Updated: )
A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to cleartext storage in a file or on disk. Local access is required to approach this attack. The identifier of this vulnerability is VDB-217592.
Credit: cna@vuldb.com cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netis-systems Netcore Router Firmware | ||
| Netis-systems Netcore Router | ||
| All of | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-0114?
The severity of CVE-2023-0114 is medium.
How does CVE-2023-0114 affect Netis Netcore Router?
CVE-2023-0114 affects Netis Netcore Router by allowing cleartext storage of data in a file or on disk.
Does CVE-2023-0114 require local access to exploit?
Yes, CVE-2023-0114 requires local access to exploit.
How can I fix CVE-2023-0114?
There is no official fix available for CVE-2023-0114 at the moment. It is recommended to apply any patches or updates provided by the vendor once they become available.
What is the Common Weakness Enumeration (CWE) ID for CVE-2023-0114?
The Common Weakness Enumeration (CWE) ID for CVE-2023-0114 is CWE-313.
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- agent/author
- agent/title
- agent/severity
- agent/weakness
- agent/description
- agent/softwarecombine
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- collector/nvd-api
- source/NVD
- vendor/netis-systems
- canonical/netis-systems netcore router firmware
- canonical/netis-systems netcore router