header-logo
Suggest Exploit
vendor:
MiFi 2352
by:
Unknown
5.5
CVSS
MEDIUM
Information Disclosure
200
CWE
Product Name: MiFi 2352
Affected Version From: 11.47.17
Affected Version To: Unknown
Patch Exists: NO
Related CWE:
CPE: h:huawei:mifi_2352
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Information Disclosure Vulnerability in MiFi 2352

The MiFi 2352 access point firmware 11.47.17 is prone to an information-disclosure vulnerability that may expose sensitive information. Successful exploits will allow authenticated attackers to obtain passwords, which may aid in further attacks. The vulnerability is caused by the disclosure of sensitive information through certain URIs.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/37962/info

MiFi 2352 is prone to an information-disclosure vulnerability that may expose sensitive information.

Successful exploits will allow authenticated attackers to obtain passwords, which may aid in further attacks.

MiFi 2352 access point firmware 11.47.17 is vulnerable; other versions may also be affected. 

The following example URIs are available:

http://www.example.com/config.xml.sav
http://www.example.com/config.xml.save

Navigation

Suggest Exploit

Services By CQR