CVE-2023-52164

MEDIUM

Digiever DS-2105 Pro <3.1.0.71-11 - Info Disclosure

Title source: llm

Description

access_device.cgi on Digiever DS-2105 Pro 3.1.0.71-11 devices allows arbitrary file read. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

References (2)

Core 2

Core References

Various Sources

https://www.akamai.com/blog/security-research/digiever-fix-that-iot-thing

Various Sources

https://www.txone.com/blog/digiever-fixes-sorely-needed/

Scores

CVSS v3 5.1

EPSS 0.0032

EPSS Percentile 24.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-284

Status published

Published Feb 03, 2025

Tracked Since Feb 18, 2026