Lucene search

[email protected]CVE-2019-19824

HistoryJan 27, 2020 - 6:15 p.m.

CVE-2019-19824

2020-01-2718:15:00

CWE-78

[email protected]

web.nvd.nist.gov

In Wild

cve

totolink

realtek

sdk

routers

command execution

security vulnerability

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.9 High

AI Score

Confidence

High

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.964 High

EPSS

Percentile

99.6%

JSON

On certain TOTOLINK Realtek SDK based routers, an authenticated attacker may execute arbitrary OS commands via the sysCmd parameter to the boafrm/formSysCmd URI, even if the GUI (syscmd.htm) is not available. This allows for full control over the device’s internals. This affects A3002RU through 2.0.0, A702R through 2.1.3, N301RT through 2.1.6, N302R through 3.4.0, N300RT through 3.4.0, N200RE through 4.0.0, N150RT through 3.4.0, and N100RE through 3.4.0.

CPENameOperatorVersion
totolink:a3002ru_firmwaretotolink a3002ru firmwarele2.0.0
totolink:a702r_firmwaretotolink a702r firmwarele2.1.3
totolink:n301rt_firmwaretotolink n301rt firmwarele2.1.6
totolink:n302r_firmwaretotolink n302r firmwarele3.4.0
totolink:n300rt_firmwaretotolink n300rt firmwarele3.4.0
totolink:n200re_firmwaretotolink n200re firmwarele4.0.0
totolink:n150rt_firmwaretotolink n150rt firmwarele3.4.0
totolink:n100re_firmwaretotolink n100re firmwarele3.4.0

CPE	Name	Operator	Version
totolink:a3002ru_firmware	totolink a3002ru firmware	le	2.0.0
totolink:a702r_firmware	totolink a702r firmware	le	2.1.3
totolink:n301rt_firmware	totolink n301rt firmware	le	2.1.6
totolink:n302r_firmware	totolink n302r firmware	le	3.4.0
totolink:n300rt_firmware	totolink n300rt firmware	le	3.4.0
totolink:n200re_firmware	totolink n200re firmware	le	4.0.0
totolink:n150rt_firmware	totolink n150rt firmware	le	3.4.0
totolink:n100re_firmware	totolink n100re firmware	le	3.4.0

References

packetstormsecurity.com/files/156083/Realtek-SDK-Information-Disclosure-Code-Execution.html

seclists.org/fulldisclosure/2020/Jan/36

seclists.org/fulldisclosure/2020/Jan/38

sploit.tech

Social References

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.9 High

AI Score

Confidence

High

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.964 High

EPSS

Percentile

99.6%

JSON

Related for CVE-2019-19824

attackerkb1 checkpoint_advisories1 prion1 cvelist1 nuclei1 zdt1 packetstorm1