CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

70 matches found

ATTACKERKB•added 2023/12/22 6:15 p.m.•2 views

CVE-2023-51025

TOTOlink EX1800T V9.1.0cu.2112B20220316 is vulnerable to an unauthorized arbitrary command execution in the ‘admuser’ parameter of the setPasswordCfg interface of the cstecgi .cgi...

9.8CVSS6.1AI score0.01049EPSS

Exploits1References2

OSV•added 2023/12/22 6:15 p.m.•3 views

CVE-2023-51025

TOTOlink EX1800T V9.1.0cu.2112B20220316 is vulnerable to an unauthorized arbitrary command execution in the ‘admuser’ parameter of the setPasswordCfg interface of the cstecgi .cgi...

9.8CVSS6AI score0.01049EPSS

Exploits1References1

Positive Technologies•added 2023/12/22 12:0 a.m.•3 views

PT-2023-31740 · Totolink · Totolink Ex1800T

Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue concerns an unauthorized arbitrary command execution in the admuser parameter of the "setPasswordCfg" interface of the cstecgi .cgi. This allows for potential exploitation...

9.8CVSS7.2AI score0.01049EPSS

Exploits1References3

CNNVD•added 2023/12/22 12:0 a.m.•4 views

TOTOLINK EX1800T 安全漏洞

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T setPasswordCfg interface, which originates from the failure of the admuser parameter of the cstecgi .cgi's setPasswordCfg interface to correctly...

9.8CVSS7.7AI score0.01049EPSS

Exploits1References2

OSV•added 2023/10/27 9:15 p.m.•4 views

CVE-2023-46510

An issue in ZIONCOM Hong Kong Technology Limited A7000R v.4.1cu.4154 allows an attacker to execute arbitrary code via the cig-bin/cstecgi.cgi to the settings/setPasswordCfg function...

9.8CVSS6.1AI score

Exploits0References1

Positive Technologies•added 2023/10/27 12:0 a.m.•7 views

PT-2023-30066 · Zioncom (Hong Kong) Technology Limited · A7000R

Name of the Vulnerable Software and Affected Versions: ZIONCOM Hong Kong Technology Limited A7000R version 4.1cu.4154 Description: An issue allows an attacker to execute arbitrary code via the "cig-bin/cstecgi.cgi" endpoint to the setPasswordCfg function. Recommendations: For version 4.1cu.4154,...

9.8CVSS7.6AI score0.00767EPSS

Exploits0References4

CNNVD•added 2023/10/27 12:0 a.m.•3 views

ZIONCOM Technology A7000R Security Vulnerability

The ZIONCOM Technology A7000R is a network device from ZIONCOM Technology China. A security vulnerability exists in the ZIONCOM Technology A7000R version v.4.1cu.4154 that originates from a vulnerability that allows an attacker to execute arbitrary code via cig-bin/cstecgi.cgi to the...

9.8CVSS7.7AI score0.00767EPSS

Exploits0References2

CVE•added 2023/10/27 12:0 a.m.•71 views

CVE-2023-46510

CVE-2023-46510 affects ZIONCOM (Hong Kong) Technology Limited A7000R 4.1cu.4154 . The vulnerability occurs in the endpoint cig-bin/cstecgi.cgi via the function setPasswordCfg , enabling an attacker to execute arbitrary code. The CVE’s provided metrics indicate a network-exposed, low-privilege, us...

9.8CVSS9.6AI score0.00767EPSS

Exploits0References1Affected Software1

CNVD•added 2023/07/11 12:0 a.m.•1 views

TOTOLINK A3300R setPasswordCfg Method Command Injection Vulnerability

TOTOLINK A3300R is a dual-band wireless router manufactured by China's Gion Electronics TOTOLINK, mainly used for home and small network environments. A command injection vulnerability exists in the TOTOLINK A3300R. The vulnerability stems from the admuser parameter of the setPasswordCfg method...

9.8CVSS7.6AI score0.01674EPSS

Exploits1References1

OSV•added 2023/07/07 8:15 p.m.•2 views

CVE-2023-37171