Lucene search
HistoryApr 16, 2023 - 2:15 a.m.
CVE-2022-38841
linksys ax3200
command injection
diagnostics
traceroute
vulnerability
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.013
Percentile
86.2%
Linksys AX3200 1.1.00 is vulnerable to OS command injection by authenticated users via shell metacharacters to the diagnostics traceroute page.
Affected configurations
Node
linksyse8450_firmwareMatch1.1.00
linksyse8450Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linksys | e8450_firmware | 1.1.00 | cpe:2.3:o:linksys:e8450_firmware:1.1.00:*:*:*:*:*:*:* |
| linksys | e8450 | - | cpe:2.3:h:linksys:e8450:-:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Linksys AX3200 V1.1.00 - Command Injection
2023-03-22 00:00:00
zdt
zdt
Linksys AX3200 V1.1.00 - Command Injection Vulnerability
2023-03-22 00:00:00
cve
cve
CVE-2022-38841
2023-04-16 02:15:08
prion
prion
Command injection
2023-04-16 02:15:00
cvelist
cvelist
CVE-2022-38841
2023-04-16 00:00:00
packetstorm
packetstorm
Linksys AX3200 1.1.00 Command Injection
2023-03-24 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.013
Percentile
86.2%
Related for NVD:CVE-2022-38841