Lucene search
MitreCVE-2023-36952HistoryOct 16, 2023 - 5:15 a.m.
CVE-2023-36952
2023-10-1605:15:49
CWE-787
mitre
web.nvd.nist.gov
15
totolink
cp300+
v5.2cu.7594_b20200910
stack overflow
pingip
setdiagnosiscfg
cve-2023-36952
nvd
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.001
Percentile
48.7%
TOTOLINK CP300+ V5.2cu.7594_B20200910 was discovered to contain a stack overflow via the pingIp parameter in the function setDiagnosisCfg.
Affected configurations
Node
totolinkcp300\+Match-
totolinkcp300\+_firmwareMatch5.2cu.7594_b20200910
| Vendor | Product | Version | CPE |
|---|---|---|---|
| totolink | cp300\+ | - | cpe:2.3:h:totolink:cp300\+:-:*:*:*:*:*:*:* |
| totolink | cp300\+_firmware | 5.2cu.7594_b20200910 | cpe:2.3:o:totolink:cp300\+_firmware:5.2cu.7594_b20200910:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-36952
2023-10-16 00:00:00
vulnrichment
vulnrichment
CVE-2023-36952
2023-10-16 00:00:00
prion
prion
Stack overflow
2023-10-16 05:15:00
nvd
nvd
CVE-2023-36952
2023-10-16 05:15:49
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.001
Percentile
48.7%
Related for CVE-2023-36952