Unrated severityNVD Advisory· Published Mar 23, 2020· Updated Aug 4, 2024
CVE-2020-10871
CVE-2020-10871
Description
In OpenWrt LuCI git-20.x, remote unauthenticated attackers can retrieve the list of installed packages and services. NOTE: the vendor disputes the significance of this report because, for instances reachable by an unauthenticated actor, the same information is available in other (more complex) ways, and there is no plan to restrict the information further
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- OpenWrt/LuCIdescription
Patches
Vulnerability mechanics
References
3- github.com/openwrt/luci/issues/3563mitrex_refsource_MISC
- github.com/openwrt/luci/issues/3653mitrex_refsource_MISC
- github.com/openwrt/luci/issues/3766mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.