Lucene search

K
cve[email protected]CVE-2023-52026
HistoryJan 12, 2024 - 1:15 p.m.

CVE-2023-52026

2024-01-1213:15:11
web.nvd.nist.gov
10
totolink
ex1800t
v9.1.0cu.2112_b20220316
rce
remote command execution
vulnerability
telnet_enabled
settelnetcfg
nvd
cve-2023-52026

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.7%

TOTOlink EX1800T V9.1.0cu.2112_B20220316 was discovered to contain a remote command execution (RCE) vulnerability via the telnet_enabled parameter of the setTelnetCfg interface

Affected configurations

NVD
Node
totolinkex1800tMatch-
AND
totolinkex1800t_firmwareMatch9.1.0cu.2112_b20220316

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.7%

Related for CVE-2023-52026