Description
DTEN D5 and D7 before 1.3.2 devices allows remote attackers to read saved whiteboard image PDF documents via storage/emulated/0/Notes/PDF on TCP port 8080 without authentication.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://www.forescout.com/company/blog/dten-vulnerability/
Scores
CVSS v3
5.3
EPSS
0.0159
EPSS Percentile
72.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-306
Status
published
Products (2)
dten/d5_firmware
< 1.3.2
dten/d7_firmware
< 1.3.2
Published
Jan 06, 2020
Tracked Since
Feb 18, 2026