Lucene search

[email protected]NVD:CVE-2023-34669

HistoryJul 17, 2023 - 5:15 p.m.

CVE-2023-34669

2023-07-1717:15:09

[email protected]

web.nvd.nist.gov

totolink

cp300+

v5.2cu.7594

denial of service

rebootsystem

lib/cste_modules/system

reboot system

cve-2023-34669

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

32.6%

JSON

TOTOLINK CP300+ V5.2cu.7594 contains a Denial of Service vulnerability in function RebootSystem of the file lib/cste_modules/system which can reboot the system.

Affected configurations

Nvd

Node

totolinkcp300\+Match-

AND

totolinkcp300\+_firmwareMatch5.2cu.7594

VendorProductVersionCPE
totolinkcp300\+-cpe:2.3:h:totolink:cp300\+:-:*:*:*:*:*:*:*
totolinkcp300\+_firmware5.2cu.7594cpe:2.3:o:totolink:cp300\+_firmware:5.2cu.7594:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
totolink	cp300\+	-	cpe:2.3:h:totolink:cp300\+:-:::::::*
totolink	cp300\+_firmware	5.2cu.7594	cpe:2.3:o:totolink:cp300\+_firmware:5.2cu.7594:::::::*

References

w3b5h3ll.notion.site/w3b5h3ll/TOTOLINK-CP300-c96d775881f0476b9ef465dba9c6d9b8

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

32.6%

JSON

Related for NVD:CVE-2023-34669

cvelist1 cve1 prion1