Lucene search

[email protected]CVE-2023-52026

HistoryJan 12, 2024 - 1:15 p.m.

CVE-2023-52026

2024-01-1213:15:11

[email protected]

web.nvd.nist.gov

totolink

ex1800t

v9.1.0cu.2112_b20220316

rce

remote command execution

vulnerability

telnet_enabled

settelnetcfg

nvd

cve-2023-52026

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.7%

JSON

TOTOlink EX1800T V9.1.0cu.2112_B20220316 was discovered to contain a remote command execution (RCE) vulnerability via the telnet_enabled parameter of the setTelnetCfg interface

Affected configurations

NVD

Node

totolinkex1800tMatch-

AND

totolinkex1800t_firmwareMatch9.1.0cu.2112_b20220316

CPENameOperatorVersion
totolink:ex1800t_firmwaretotolink ex1800t firmwareeq9.1.0cu.2112_b20220316

CPE	Name	Operator	Version
totolink:ex1800t_firmware	totolink ex1800t firmware	eq	9.1.0cu.2112_b20220316

References

815yang.github.io/2023/12/11/EX1800T/2/TOTOlinkEX1800T_V9.1.0cu.2112_B2022031setTelnetCfg/

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.7%

JSON

Related for CVE-2023-52026

prion1 cvelist1 nvd1