Lucene search

K
cve[email protected]CVE-2022-32993
HistoryAug 29, 2022 - 9:15 p.m.

CVE-2022-32993

2022-08-2921:15:09
web.nvd.nist.gov
24
5
cve-2022-32993
totolink
a7000r
v4.1cu.4134
access control
cgi
exportsettings.sh
nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.1%

TOTOLINK A7000R V4.1cu.4134 was discovered to contain an access control issue via /cgi-bin/ExportSettings.sh.

Affected configurations

NVD
Node
totolinka7000r_firmwareMatch4.1cu.4134
AND
totolinka7000rMatch-

Social References

More

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.1%

Related for CVE-2022-32993