CVE-2022-31793

Summary

CVE	CVE-2022-31793
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-08-04 22:15:00 UTC
Updated	2022-08-11 18:07:00 UTC
Description	do_request in request.c in muhttpd before 1.1.7 allows remote attackers to read arbitrary files by constructing a URL with a single character before a desired path on the filesystem. This occurs because the code skips over the first character when serving files. Arris NVG443, NVG599, NVG589, and NVG510 devices and Arris-derived BGW210 and BGW320 devices are affected.

Risk And Classification

Problem Types: CWE-22

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Arris	Bgw210	-	All	All	All
Operating System	Arris	Bgw210 Firmware	-	All	All	All
Hardware	Arris	Bgw320	-	All	All	All
Operating System	Arris	Bgw320 Firmware	-	All	All	All
Hardware	Arris	Nvg443	-	All	All	All
Operating System	Arris	Nvg443 Firmware	-	All	All	All
Hardware	Arris	Nvg510	-	All	All	All
Operating System	Arris	Nvg510 Firmware	-	All	All	All
Hardware	Arris	Nvg589	-	All	All	All
Operating System	Arris	Nvg589 Firmware	-	All	All	All
Hardware	Arris	Nvg599	-	All	All	All
Operating System	Arris	Nvg599 Firmware	-	All	All	All
Application	Inglorion	Muhttpd	All	All	All	All

References

Reference	Source	Link	Tags
muhttpd - Annon Inglorion	MISC	inglorion.net
VU#495801 - muhttpd versions 1.1.5 and earlier are vulnerable to path traversal	MISC	kb.cert.org
Millions of Arris routers are vulnerable to path traversal attacks \| Malwarebytes Labs	MISC	blog.malwarebytes.com
Arris / Arris-variant DSL/Fiber router critical vulnerability exposure \| Derek Abdine	MISC	derekabdine.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.