Lucene search
MitreCVE-2023-52042HistoryJan 16, 2024 - 10:15 p.m.
CVE-2023-52042
2024-01-1622:15:37
CWE-77
mitre
web.nvd.nist.gov
17
cve-2023-52042
totolink
x6000r
arbitrary commands
security issue
nvd
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.046
Percentile
92.7%
An issue discovered in sub_4117F8 function in TOTOLINK X6000R V9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the ‘lang’ parameter.
Affected configurations
Node
totolinkx6000r_firmwareMatch9.4.0cu.852_b20230719
totolinkx6000rMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| totolink | x6000r_firmware | 9.4.0cu.852_b20230719 | cpe:2.3:o:totolink:x6000r_firmware:9.4.0cu.852_b20230719:*:*:*:*:*:*:* |
| totolink | x6000r | - | cpe:2.3:h:totolink:x6000r:-:*:*:*:*:*:*:* |
Related
vulnrichment
vulnrichment
CVE-2023-52042
2024-01-16 00:00:00
cvelist
cvelist
CVE-2023-52042
2024-01-16 00:00:00
prion
prion
Design/Logic Flaw
2024-01-16 22:15:00
nvd
nvd
CVE-2023-52042
2024-01-16 22:15:37
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.046
Percentile
92.7%
Related for CVE-2023-52042