Lucene search
MitreCVE-2023-48192HistoryNov 20, 2023 - 10:15 p.m.
CVE-2023-48192
2023-11-2022:15:07
CWE-94
mitre
web.nvd.nist.gov
19
cve-2023-48192
totolink
a3700r
code execution
local attacker
vulnerability
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
36.4%
An issue in TOTOlink A3700R v.9.1.2u.6134_B20201202 allows a local attacker to execute arbitrary code via the setTracerouteCfg function.
Affected configurations
Node
totolinka3700r_firmwareMatch9.1.2u.6134_b20201202
totolinka3700rMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| totolink | a3700r_firmware | 9.1.2u.6134_b20201202 | cpe:2.3:o:totolink:a3700r_firmware:9.1.2u.6134_b20201202:*:*:*:*:*:*:* |
| totolink | a3700r | - | cpe:2.3:h:totolink:a3700r:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-48192
2023-11-20 00:00:00
nvd
nvd
CVE-2023-48192
2023-11-20 22:15:07
prion
prion
Code injection
2023-11-20 22:15:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
36.4%
Related for CVE-2023-48192