CVE-2023-51019

2023-12-2200:00:00

mitre

www.cve.org

totolink

ex1800t

vulnerability

unauthorized

command execution

cstecgi

cgi

9.7 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.0%

JSON

TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘key5g’ parameter of the setWiFiExtenderConfig interface of the cstecgi .cgi.

References

815yang.github.io/2023/12/11/EX1800T/2/TOTOlinkEX1800T_V9.1.0cu.2112_B20220316setWiFiExtenderConfig-key5g/