Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2023-31742
HistoryMay 22, 2023 - 12:00 a.m.

CVE-2023-31742

2023-05-2200:00:00
mitre
www.cve.org
2
command injection
linksys wrt54gl
firmware 4.30.18.006
web management privileges
post request parameters
httpd s start_epi()
shell privileges

EPSS

0.01

Percentile

83.9%

JSON

There is a command injection vulnerability in the Linksys WRT54GL router with firmware version 4.30.18.006. If an attacker gains web management privileges, they can inject commands into the post request parameters wl_ant, wl_rate, WL_atten_ctl, ttcp_num, ttcp_size in the httpd s Start_EPI() function, thereby gaining shell privileges.

Related

prion 1
nvd 1
cve 1
prion
prion
Command injection
2023-05-22 17:15:00
nvd
nvd
CVE-2023-31742
2023-05-22 17:15:09
cve
cve
CVE-2023-31742
2023-05-22 17:15:09

EPSS

0.01

Percentile

83.9%

JSON
Related for CVELIST:CVE-2023-31742
prion1nvd1cve1