Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Bgw320_firmware
(Arris)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 1 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-08-04 | CVE-2022-31793 | do_request in request.c in muhttpd before 1.1.7 allows remote attackers to read arbitrary files by constructing a URL with a single character before a desired path on the filesystem. This occurs because the code skips over the first character when serving files. Arris NVG443, NVG599, NVG589, and NVG510 devices and Arris-derived BGW210 and BGW320 devices are affected. | Bgw210_firmware, Bgw320_firmware, Nvg443_firmware, Nvg510_firmware, Nvg589_firmware, Nvg599_firmware, Muhttpd | 7.5 |