LFD Vulnerability in BE126 WIFI Repeater 1.0 Devices Allows Full Filesystem Access

LFD Vulnerability in BE126 WIFI Repeater 1.0 Devices Allows Full Filesystem Access

CVE-2017-8770 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

There is LFD (local file disclosure) on BE126 WIFI repeater 1.0 devices that allows attackers to read the entire filesystem on the device via a crafted getpage parameter.

Learn more about our Web Application Penetration Testing UK.