Lucene search
+L

7 matches found

Nuclei
Nuclei
added 2 days ago158 views

TOTOLINK A3700R - Command Injection

An issue in TOTOLINK A3700R v.9.1.2u.616520211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function. id: CVE-2023-46574 info: name: TOTOLINK A3700R - Command Injection author: DhiyaneshDk severity: critical description: | An issue in...

9.8CVSS9AI score0.65412EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.8 views

CVE-2023-46574

An issue in TOTOLINK A3700R v.9.1.2u.616520211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function...

9.8CVSS7.8AI score0.65412EPSS
Exploits2
Circl
Circl
added 2023/10/25 10:49 p.m.25 views

CVE-2023-46574

creationtimestamp| type| source ---|---|--- 2023-10-25 22:49:23+00:00| seen| https://t.me/cibsecurity/72876 2023-12-28 01:09:47+00:00| seen| https://t.me/arpsyndicate/2171 2023-12-28 04:58:15+00:00| seen| https://t.me/arpsyndicate/2193 2025-01-31 00:00:00+00:00| exploited| The Shadowserver...

9.8CVSS7.3AI score0.65412EPSS
In wildExploits2References6
NVD
NVD
added 2023/10/25 6:17 p.m.30 views

CVE-2023-46574

An issue in TOTOLINK A3700R v.9.1.2u.616520211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function...

9.8CVSS9.7AI score0.65412EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2023/10/25 6:17 p.m.4 views

CVE-2023-46574

An issue in TOTOLINK A3700R v.9.1.2u.616520211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function...

9.8CVSS6.2AI score0.65412EPSS
Exploits2References3
CVE
CVE
added 2023/10/24 12:0 a.m.112 views

CVE-2023-46574

The vulnerability CVE-2023-46574 affects TOTOLINK A3700R (v9.1.2u.6165_20211012). Affected component: UploadFirmwareFile function; root cause: lack of input sanitization in the FileName parameter, enabling remote code execution by an unauthenticated attacker. Impact: remote execution leading to f...

9.8CVSS9.6AI score0.65412EPSS
In wildExploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/24 12:0 a.m.21 views

CVE-2023-46574

An issue in TOTOLINK A3700R v.9.1.2u.616520211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function...

8.1AI score0.65412EPSS
Exploits2References1
Rows per page
Query Builder