CVE-2016-10106

Directory traversal vulnerability in scgi-bin/platform.cgi on NETGEAR FVS336Gv3, FVS318N, FVS318Gv2, and SRX5308 devices with firmware before 4.3.3-8 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the thispage parameter, as demonstrated by reading the /etc/shadow file.

Published: Jan 3, 2017
Updated: Apr 13, 2023
CVE: CVE-2016-10106
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
netgear / fvs336gv3_firmware	-	4.3-3.6.x
netgear / srx5308_firmware	-	4.3-3.6.x
netgear / fvs318gv2_firmware	-	4.3-3.6.x
netgear / fvs318n_firmware	-	4.3-3.6.x

http://kb.netgear.com/30739/Path-Traversal-Attack-Security-Vulnerability
http://www.securityfocus.com/bid/95204
http://www.securitytracker.com/id/1037548
https://twitter.com/mantislesin/status/816618162770821120

Vulnerability Database

289,871

CVE-2016-10106