CVE-2023-31477
- Reference to the description:
- Description:
- A path traversal issue was discovered on GL.iNet devices before 3.216. Through the file sharing feature, it is possible to share an arbitrary directory, such as /tmp or /etc, because there is no server-side restriction to limit sharing to the USB path.
- Last updated date:
- 01/27/2025
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 05/18/2023
- Reference url to background
https://github.com/gl-inet/CVE-issues/blob/main/3.215/Path_Traversal.md