Directory Traversal Vulnerability in Yeastar NeoGate TG400 91.3.0.3 Devices Allows Unauthorized Access to Sensitive Information

Directory Traversal Vulnerability in Yeastar NeoGate TG400 91.3.0.3 Devices Allows Unauthorized Access to Sensitive Information

CVE-2021-27328 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Yeastar NeoGate TG400 91.3.0.3 devices are affected by Directory Traversal. An authenticated user can decrypt firmware and can read sensitive information, such as a password or decryption key.

Learn more about our User Device Pen Test.