VAR-201801-1392
Vulnerability from variot - Updated: 2024-11-23 23:02An issue was discovered in the HTTP Server in RAVPower Filehub 2.000.056. Due to an unrestricted upload feature and a path traversal vulnerability, it is possible to upload a file on a filesystem with root privileges: this will lead to remote code execution as root. RAVPower Filehub Contains path traversal vulnerabilities and unsafe uploads of dangerous types of files.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. RAVPowerFileHub is a versatile digital device from RAVPower Corporation of the United States. The device also has features such as a card reader, USB storage, and a NAS file server. HTTPServer is one of the HTTP servers. A remote code execution vulnerability exists in RAVPowerFilehub. The HTTP Server in RAVPower Filehub version 2.000.056 has a path traversal vulnerability
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "filehub",
"scope": "eq",
"trust": 3.0,
"vendor": "ravpower",
"version": "2.000.056"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-02999"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
},
{
"db": "CNNVD",
"id": "CNNVD-201801-975"
},
{
"db": "NVD",
"id": "CVE-2018-5997"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:ravpower:filehub_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
}
]
},
"cve": "CVE-2018-5997",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CVE-2018-5997",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.9,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2018-02999",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "VHN-136029",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2018-5997",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2018-5997",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2018-5997",
"trust": 0.8,
"value": "Critical"
},
{
"author": "CNVD",
"id": "CNVD-2018-02999",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201801-975",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-136029",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2018-5997",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-02999"
},
{
"db": "VULHUB",
"id": "VHN-136029"
},
{
"db": "VULMON",
"id": "CVE-2018-5997"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
},
{
"db": "CNNVD",
"id": "CNNVD-201801-975"
},
{
"db": "NVD",
"id": "CVE-2018-5997"
}
]
},
"description": {
"_id": null,
"data": "An issue was discovered in the HTTP Server in RAVPower Filehub 2.000.056. Due to an unrestricted upload feature and a path traversal vulnerability, it is possible to upload a file on a filesystem with root privileges: this will lead to remote code execution as root. RAVPower Filehub Contains path traversal vulnerabilities and unsafe uploads of dangerous types of files.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. RAVPowerFileHub is a versatile digital device from RAVPower Corporation of the United States. The device also has features such as a card reader, USB storage, and a NAS file server. HTTPServer is one of the HTTP servers. A remote code execution vulnerability exists in RAVPowerFilehub. The HTTP Server in RAVPower Filehub version 2.000.056 has a path traversal vulnerability",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-5997"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
},
{
"db": "CNVD",
"id": "CNVD-2018-02999"
},
{
"db": "VULHUB",
"id": "VHN-136029"
},
{
"db": "VULMON",
"id": "CVE-2018-5997"
}
],
"trust": 2.34
},
"exploit_availability": {
"_id": null,
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-136029",
"trust": 0.1,
"type": "unknown"
},
{
"reference": "https://vulmon.com/exploitdetails?qidtp=exploitdb\u0026qid=43871",
"trust": 0.1,
"type": "exploit"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-136029"
},
{
"db": "VULMON",
"id": "CVE-2018-5997"
}
]
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2018-5997",
"trust": 3.2
},
{
"db": "EXPLOIT-DB",
"id": "43871",
"trust": 3.2
},
{
"db": "JVNDB",
"id": "JVNDB-2018-001580",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201801-975",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2018-02999",
"trust": 0.6
},
{
"db": "PACKETSTORM",
"id": "146073",
"trust": 0.1
},
{
"db": "VULHUB",
"id": "VHN-136029",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2018-5997",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-02999"
},
{
"db": "VULHUB",
"id": "VHN-136029"
},
{
"db": "VULMON",
"id": "CVE-2018-5997"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
},
{
"db": "CNNVD",
"id": "CNNVD-201801-975"
},
{
"db": "NVD",
"id": "CVE-2018-5997"
}
]
},
"id": "VAR-201801-1392",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-02999"
},
{
"db": "VULHUB",
"id": "VHN-136029"
}
],
"trust": 1.325
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-02999"
}
]
},
"last_update_date": "2024-11-23T23:02:13.672000Z",
"patch": {
"_id": null,
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "https://www.ravpower.com/"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-22",
"trust": 1.9
},
{
"problemtype": "CWE-434",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-136029"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
},
{
"db": "NVD",
"id": "CVE-2018-5997"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 3.3,
"url": "https://www.exploit-db.com/exploits/43871/"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-5997"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-5997"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/22.html"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/434.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-02999"
},
{
"db": "VULHUB",
"id": "VHN-136029"
},
{
"db": "VULMON",
"id": "CVE-2018-5997"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
},
{
"db": "CNNVD",
"id": "CNNVD-201801-975"
},
{
"db": "NVD",
"id": "CVE-2018-5997"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "CNVD",
"id": "CNVD-2018-02999",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-136029",
"ident": null
},
{
"db": "VULMON",
"id": "CVE-2018-5997",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2018-001580",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201801-975",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2018-5997",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2018-02-08T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-02999",
"ident": null
},
{
"date": "2018-01-25T00:00:00",
"db": "VULHUB",
"id": "VHN-136029",
"ident": null
},
{
"date": "2018-01-25T00:00:00",
"db": "VULMON",
"id": "CVE-2018-5997",
"ident": null
},
{
"date": "2018-02-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-001580",
"ident": null
},
{
"date": "2018-01-26T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201801-975",
"ident": null
},
{
"date": "2018-01-25T17:29:00.303000",
"db": "NVD",
"id": "CVE-2018-5997",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2018-02-11T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-02999",
"ident": null
},
{
"date": "2018-02-12T00:00:00",
"db": "VULHUB",
"id": "VHN-136029",
"ident": null
},
{
"date": "2018-02-12T00:00:00",
"db": "VULMON",
"id": "CVE-2018-5997",
"ident": null
},
{
"date": "2018-02-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-001580",
"ident": null
},
{
"date": "2018-01-26T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201801-975",
"ident": null
},
{
"date": "2024-11-21T04:09:51.103000",
"db": "NVD",
"id": "CVE-2018-5997",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201801-975"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "RAVPower Filehub Path traversal vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-001580"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "path traversal",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201801-975"
}
],
"trust": 0.6
}
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.