POC详情: ff4c724a8f767d1b0c680498034af3850c035633

来源
https://github.com/brosck/CVE-2022-1077
关联漏洞
标题: TEM FLEX-1080 和 TEM FLEX-1085 信息泄露漏洞 (CVE-2022-1077)
描述:TEM FLEX-1080和TEM FLEX-1085都是巴西TEM公司的一个家用 WiFi 报警器套件。 TEM FLEX-1080 和 FLEX-1085 1.6.0 中存在安全漏洞,该漏洞源于组件Log Handler的log.cgi中的信息泄露。
描述
TEM FLEX-1080/FLEX-1085 1.6.0 log log.cgi Information Disclosure
介绍
<h1 align="center">CVE-2022-1077</h1>

<h2 align="center">Description</h2>

A vulnerability was found in TEM FLEX-1080 and FLEX-1085 1.6.0. It has been declared as problematic. This vulnerability log.cgi of the component Log Handler. A direct request leads to information disclosure of hardware information. The attack can be initiated remotely and does not require any form of authentication.

![](1.png)

<h2 align="center">Usage</h2>

```
$ git clone https://github.com/MrEmpy/CVE-2022-1077.git
$ cd CVE-2022-1077
$ chmod +x cve-2022-1077.py
$ ./cve-2022-1077.py -u http://<IP>
```

<h2 align="center">Reference</h2>

* https://vuldb.com/?id.194848
文件快照

 [4.0K]  /data/pocs/ff4c724a8f767d1b0c680498034af3850c035633
├── [ 41K]  1.png
├── [2.1K]  cve-2022-1077.py
└── [ 652]  README.md

0 directories, 3 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。