CVE-2023-39618

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 21, 2023
Updated: Aug 25, 2023
CWE ID 77

Summary

CVE-2023-39618 is a newly discovered remote code execution (RCE) vulnerability affecting the TOTOLINK X5000R B20210419 firmware. This issue can be exploited through the setTracerouteCfg interface, allowing unauthorized users to execute arbitrary code on the targeted device. Successful exploitation could lead to significant security consequences, including data theft, unauthorized access, or system takeover. It is recommended that affected users apply the available patch as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share