CVE-2017-8770

There is LFD (local file disclosure) on BE126 WIFI repeater 1.0 devices that allows attackers to read the entire filesystem on the device via a crafted getpage parameter.

Date published : 2017-09-20

https://www.exploit-db.com/exploits/42547/

http://www.digitalwhisper.co.il/files/Zines/0x56/DW86-1-RepeaterHack.pdf