Lucene search

[email protected]CVE-2023-43141

HistorySep 25, 2023 - 4:15 p.m.

CVE-2023-43141

2023-09-2516:15:14

[email protected]

web.nvd.nist.gov

totolink

a3700r

n600r

vulnerability

incorrect access control

cve-2023-43141

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.8%

JSON

TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137 are vulnerable to Incorrect Access Control.

Affected configurations

NVD

Node

totolinka3700rMatch-

AND

totolinka3700r_firmwareMatch9.1.2u.6134_b20201202

Node

totolinkn600rMatch-

AND

totolinkn600r_firmwareMatch4.3.0cu.7647_b20210106

CPENameOperatorVersion
totolink:a3700r_firmwaretotolink a3700r firmwareeq9.1.2u.6134_b20201202

CPE	Name	Operator	Version
totolink:a3700r_firmware	totolink a3700r firmware	eq	9.1.2u.6134_b20201202

References

totolink.com

github.com/Blue-And-White/vul/blob/main/Iot/TOTOLINK/1/readme.md

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.8%

JSON

Related for CVE-2023-43141

nvd1 cvelist1 prion1