Description
The web interface on multiple Samsung Harman AMX N-Series devices allows directory listing for the /tmp/ directory, without authentication, exposing sensitive information such as the command history and screenshot of the file being processed. This affects N-Series N1115 Wallplate Video Encoder before 1.15.61, N-Series N1x22A Video Encoder/Decoder before 1.15.61, N-Series N1x33A Video Encoder/Decoder before 1.15.61, N-Series N1x33 Video Encoder/Decoder before 1.15.61, N-Series N2x35 Video Encoder/Decoder before 1.15.61, N-Series N2x35A Video Encoder/Decoder before 1.15.61, N-Series N2xx2 Video Encoder/Decoder before 1.15.61, N-Series N2xx2A Video Encoder/Decoder before 1.15.61, N-Series N3000 Video Encoder/Decoder before 2.12.105, and N-Series N4321 Audio Transceiver before 1.00.06.
Details
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Packages
| Software | From version | Fixed in |
|---|---|---|
| fgn1115-wp-wh-firmware | — | 1.15.61 |
| fgn1122-cd-firmware | — | 1.15.61 |
| fgn1122-sa-firmware | — | 1.15.61 |
| fgn1133-cd-firmware | — | 1.15.61 |
| fgn1133-sa-firmware | — | 1.15.61 |
| fgn1133a-cd-firmware | — | 1.15.61 |
| fgn1133a-sa-firmware | — | 1.15.61 |
| fgn1222-cd-firmware | — | 1.15.61 |
| fgn1222-sa-firmware | — | 1.15.61 |
| fgn1233-cd-firmware | — | 1.15.61 |
| fgn1233-sa-firmware | — | 1.15.61 |
| fgn1233a-cd-firmware | — | 1.15.61 |
| fgn1233a-sa-firmware | — | 1.15.61 |
| fgn2122-cd-firmware | — | 1.15.61 |
| fgn2122-sa-firmware | — | 1.15.61 |
| fgn2122a-cd-firmware | — | 1.15.61 |
| fgn2122a-sa-firmware | — | 1.15.61 |
| fgn2135-cd-firmware | — | 1.15.61 |
| fgn2135-sa-firmware | — | 1.15.61 |
| fgn2212-cd-firmware | — | 1.15.61 |
| fgn2212-sa-firmware | — | 1.15.61 |
| fgn2222-cd-firmware | — | 1.15.61 |
| fgn2222-sa-firmware | — | 1.15.61 |
| fgn2222a-cd-firmware | — | 1.15.61 |
| fgn2222a-sa-firmware | — | 1.15.61 |
| fgn2235-cd-firmware | — | 1.15.61 |
| fgn2235-sa-firmware | — | 1.15.61 |
| fgn3132a-c-firmware | — | 2.12.105 |
| fgn3132a-sa-firmware | — | 2.12.105 |
| fgn3232a-c-firmware | — | 2.12.105 |
| fgn3232a-sa-firmware | — | 2.12.105 |
| fgn4321-cd-firmware | — | 1.00.06 |
| fgn4321-sa-firmware | — | 1.00.06 |
References
Exploit Protection
Help block exploit attempts
BotEraser is designed to detect and help reduce malicious bot traffic that may target known vulnerabilities on your site.
Try BotEraser Free →No credit card required · Results in minutes
ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.