Exploitation Summary
EIP tracks 1 public exploit for CVE-2023-33477. PoCs published by Skr11lex.
AI-analyzed exploit summary The repository describes an unauthorized download vulnerability in Harmonic NSG 9000-6G modulator, allowing remote attackers to access sensitive configuration files without authentication. The config.exp file contains sensitive interfaces and request methods.
Description
In Harmonic NSG 9000-6G devices, an authenticated remote user can obtain source code by directly requesting a special path.
Exploits (1)
The repository describes an unauthorized download vulnerability in Harmonic NSG 9000-6G modulator, allowing remote attackers to access sensitive configuration files without authentication. The config.exp file contains sensitive interfaces and request methods.
References (1)
Scores
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N