Symlink Traversal Vulnerability in Belkin N900 Router
CVE-2013-4655

7.5HIGH

Key Information:

Vendor

Belkin

Status
N900 Firmware
Vendor
CVE Published:
13 November 2019

What is CVE-2013-4655?

A Symlink Traversal vulnerability exists in the Belkin N900 router due to improper configuration of the SMB service. This flaw allows attackers to potentially bypass system restrictions and access files outside of designated directories, leading to unauthorized data exposure. Proper maintenance and configuration of SMB services are essential to mitigate this risk and enhance network security.

References

https://www.ise.io/casestudies/exploiting-soho-routers/
x_refsource_MISC
https://www.ise.io/soho_service_hacks/
x_refsource_MISC
https://www.ise.io/wp-content/uploads/2017/07/soho_techre...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.