Lucene search
HistoryApr 16, 2023 - 2:15 a.m.
CVE-2022-38841
linksys
ax3200
1.1.00
os command injection
authenticated users
shell metacharacters
diagnostics traceroute
security vulnerability
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.5%
Linksys AX3200 1.1.00 is vulnerable to OS command injection by authenticated users via shell metacharacters to the diagnostics traceroute page.
Affected configurations
Node
linksyse8450_firmwareMatch1.1.00
linksyse8450Match-
| CPE | Name | Operator | Version |
|---|---|---|---|
| linksys:e8450_firmware | linksys e8450 firmware | eq | 1.1.00 |
References
Social References
More
Related
nvd
nvd
CVE-2022-38841
2023-04-16 02:15:08
prion
prion
Command injection
2023-04-16 02:15:00
cvelist
cvelist
CVE-2022-38841
2023-04-16 00:00:00
packetstorm
packetstorm
Linksys AX3200 1.1.00 Command Injection
2023-03-24 00:00:00
zdt
zdt
Linksys AX3200 V1.1.00 - Command Injection Vulnerability
2023-03-22 00:00:00
exploitdb
exploitdb
Linksys AX3200 V1.1.00 - Command Injection
2023-03-22 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.5%
Related for CVE-2022-38841