VYPR
Medium severity5.9NVD Advisory· Published Feb 13, 2017· Updated Jun 17, 2026

CVE-2017-5163

CVE-2017-5163

Description

An issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. After an administrator downloads a configuration file, a copy of the configuration file, which includes hashes of user passwords, is saved to a location that is accessible without authentication by path traversal.

Affected products

2
  • cpe:2.3:o:belden_hirschmann:gecko_lite_managed_switch_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:belden_hirschmann:gecko_lite_managed_switch_firmware:*:*:*:*:*:*:*:*range: <=2.0.00
    • (no CPE)range: <=2.0.00

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.