CVE-2018-16739

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2018-16739
An issue was discovered on certain ABUS TVIP devices. Due to a path traversal in /opt/cgi/admin/filewrite, an attacker can write to files, and thus execute code arbitrarily with root privileges.

8.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://sec.maride.cc/posts/abus/ Exploit Third Party Advisory
https://www.ccc.de/en/updates/2019/update-nicht-verfugbar-hersteller-nicht-zu-erreichen Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:abus:tvip_10000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10000:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:abus:tvip_10001_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10001:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:abus:tvip_10005_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10005:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:abus:tvip_10005a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10005a:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:abus:tvip_10005b_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10005b:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:abus:tvip_10050_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10050:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:abus:tvip_10051_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10051:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:abus:tvip_10055a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10055a:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:abus:tvip_10055b_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10055b:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:abus:tvip_10500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10500:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:abus:tvip_10550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_10550:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:abus:tvip_11000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_11000:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:abus:tvip_11050_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_11050:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:abus:tvip_11500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_11500:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:abus:tvip_11501_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_11501:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:abus:tvip_11502_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_11502:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:abus:tvip_11550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_11550:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:abus:tvip_11551_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_11551:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:abus:tvip_11552_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_11552:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:abus:tvip_20000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_20000:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:abus:tvip_20050_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_20050:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:abus:tvip_20500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_20500:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:abus:tvip_20550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_20550:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:abus:tvip_21000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_21000:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:abus:tvip_21050_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_21050:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:abus:tvip_21500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_21500:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:abus:tvip_21501_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_21501:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:abus:tvip_21502_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_21502:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:abus:tvip_21550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_21550:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:abus:tvip_21551_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_21551:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:abus:tvip_21552_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_21552:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:abus:tvip_22500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_22500:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:abus:tvip_31000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_31000:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:abus:tvip_31001_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_31001:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:abus:tvip_31050_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_31050:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:abus:tvip_31500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_31500:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:abus:tvip_31501_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_31501:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:abus:tvip_31550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_31550:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND
cpe:2.3:o:abus:tvip_31551_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_31551:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND
cpe:2.3:o:abus:tvip_32500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_32500:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND
cpe:2.3:o:abus:tvip_51500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_51500:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND
cpe:2.3:o:abus:tvip_51550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_51550:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND
cpe:2.3:o:abus:tvip_71500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_71500:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND
cpe:2.3:o:abus:tvip_71501_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_71501:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND
cpe:2.3:o:abus:tvip_71550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_71550:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND
cpe:2.3:o:abus:tvip_71551_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_71551:-:*:*:*:*:*:*:*

Configuration 47 (hide)

AND
cpe:2.3:o:abus:tvip_72500_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abus:tvip_72500:-:*:*:*:*:*:*:*
History

11 Sep 2024, 20:35

Type Values Removed Values Added
New CVE
Information

Published : 2023-10-26 22:15

Updated : 2024-09-11 20:35

NVD link : CVE-2018-16739

Mitre link : CVE-2018-16739

CVE.ORG link : CVE-2018-16739

JSON object : View

Products Affected

abus

  • tvip_21502
  • tvip_20500
  • tvip_21000_firmware
  • tvip_71500
  • tvip_21552_firmware
  • tvip_31501
  • tvip_32500
  • tvip_21550_firmware
  • tvip_51550
  • tvip_10005a
  • tvip_51550_firmware
  • tvip_11050_firmware
  • tvip_71550
  • tvip_10550_firmware
  • tvip_10055b_firmware
  • tvip_71551
  • tvip_10055b
  • tvip_51500_firmware
  • tvip_20550
  • tvip_10051
  • tvip_21501_firmware
  • tvip_21552
  • tvip_10050
  • tvip_11501
  • tvip_20550_firmware
  • tvip_10050_firmware
  • tvip_20050_firmware
  • tvip_10005a_firmware
  • tvip_11501_firmware
  • tvip_31000_firmware
  • tvip_10001_firmware
  • tvip_21501
  • tvip_31550_firmware
  • tvip_21502_firmware
  • tvip_51500
  • tvip_31500_firmware
  • tvip_10055a_firmware
  • tvip_11550_firmware
  • tvip_21551_firmware
  • tvip_21551
  • tvip_31500
  • tvip_31000
  • tvip_71501
  • tvip_20000_firmware
  • tvip_11502
  • tvip_71551_firmware
  • tvip_21050_firmware
  • tvip_22500
  • tvip_21050
  • tvip_11500_firmware
  • tvip_11551_firmware
  • tvip_10000_firmware
  • tvip_10500_firmware
  • tvip_10550
  • tvip_10005
  • tvip_31050_firmware
  • tvip_72500_firmware
  • tvip_10500
  • tvip_71500_firmware
  • tvip_31001_firmware
  • tvip_10000
  • tvip_20050
  • tvip_71501_firmware
  • tvip_10051_firmware
  • tvip_11552
  • tvip_21500_firmware
  • tvip_11551
  • tvip_21500
  • tvip_10001
  • tvip_21000
  • tvip_31001
  • tvip_72500
  • tvip_11050
  • tvip_31501_firmware
  • tvip_31551_firmware
  • tvip_11500
  • tvip_31550
  • tvip_10055a
  • tvip_20500_firmware
  • tvip_11552_firmware
  • tvip_32500_firmware
  • tvip_20000
  • tvip_31551
  • tvip_71550_firmware
  • tvip_11000_firmware
  • tvip_31050
  • tvip_11550
  • tvip_10005b
  • tvip_10005b_firmware
  • tvip_10005_firmware
  • tvip_21550
  • tvip_11000
  • tvip_22500_firmware
  • tvip_11502_firmware
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')