Lucene search

PRIOn knowledge basePRION:CVE-2023-43318

HistoryMar 06, 2024 - 12:15 a.m.

Design/Logic Flaw

2024-03-0600:15:00

PRIOn knowledge base

www.prio-n.com

tp-link jetstream smart switch

tl-sg2210p

privilege escalation

get requests

security flaw

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.0%

JSON

TP-Link JetStream Smart Switch TL-SG2210P 5.0 Build 20211201 allows attackers to escalate privileges via modification of the ‘tid’ and ‘usrlvl’ values in GET requests.

CPENameOperatorVersion
tl-sg2210p_firmwareeq5.0 build-20211201

CPE	Name	Operator	Version
	tl-sg2210p_firmware	eq	5.0 build-20211201

References

github.com/str2ver/CVE-2023-43318/tree/main

seclists.org/fulldisclosure/2024/Mar/9