CVE-2010-2307
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2010-2307
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via (1) "//" (multiple leading slash), (2) ../ (dot dot) sequences, and encoded dot dot sequences in a URL request.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Motorola SBV6120E SURFboard Digital Voice Modem多个目录遍历漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
运行firmware SBV6X2X-1.0.0.5-SCM-02-SHPC的Motorola SURFBoard电缆调制解调器的网络服务器存在多个目录遍历漏洞,远程攻击者可利用(1) "//" , (2) ../序列,以及URL请求的".."编码序列读取任意文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2010-2307
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via (1) "//" (multiple leading slash), (2) ../ (dot dot) sequences, and encoded dot dot sequences in a URL request. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2010/CVE-2010-2307.yaml | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2010-2307
Please Login to view more intelligence information
Same Patch Batch · n/a · 2010-06-16 · 14 CVEs total
| CVE-2010-1932 | XnView堆缓冲溢出漏洞 | |
| CVE-2010-2070 | Xen本地拒绝服务漏洞 | |
| CVE-2010-2071 | Linux内核btrfs 'fs/btrfs/acl.c'btrfs_xattr_set_acl函数权限许可和访问控制问题漏洞 | |
| CVE-2010-2072 | Radovan_Garabik pyftpd临时目录不安全文件创建漏洞 | |
| CVE-2010-2073 | Radovan_Garabik pyftpd远程默认账号漏洞 | |
| CVE-2010-2074 | W3M NULL Character CA SSL 证书确认安全绕过漏洞 | |
| CVE-2010-2305 | Symantec Sygate Personal Firewall 'SSHelper.dll'ActiveX控件缓冲区溢出漏洞 | |
| CVE-2010-2306 | Sourcefire 3D Sensor和Defense Center默认安装状态配置错误漏洞 | |
| CVE-2010-2308 | Sophos Anti-Virus过滤器驱动程序未明漏洞 | |
| CVE-2010-2309 | Evological EvoCam HTTP GET请求远程溢出漏洞 | |
| CVE-2010-2310 | SolarWinds TFTP Server 写入请求拒绝服务漏洞 | |
| CVE-2010-2311 | Power Tab栈缓冲区溢出漏洞 | |
| CVE-2010-2312 | HauntmAx Haunted House Directory Listing CMS 'index.php'SQL注入漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service - CVE-2026-8267
Open5GS SMF smf_nsmf_handle_created_data_in_vsmf denial of s - CVE-2026-8266
Open5GS SMF gsm-build.c gsm_build_pdu_session_establishment_
V. Comments for CVE-2010-2307
No comments yet