An information disclosure vulnerability exists in the web...
Moderate severity
Unreviewed
Published
Apr 17, 2024
to the GitHub Advisory Database
Description
Published by the National Vulnerability Database
Apr 17, 2024
Published to the GitHub Advisory Database
Apr 17, 2024
An information disclosure vulnerability exists in the web interface /cgi-bin/download_config.cgi functionality of Peplink Smart Reader v1.2.0 (in QEMU). A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.
References