CVE-2023-43455

Summary

CVE-2023-43455 is a new vulnerability affecting TOTOLINK X6000R routers with firmware versions V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719. This issue enables remote attackers to execute arbitrary code by exploiting a vulnerability in the setting/setTracerouteCfg component. The command parameter is the point of entry for the attack, allowing unauthorized attackers to gain control over the affected device. The severity of this vulnerability is high, as it could potentially lead to complete system compromise and unauthorized access to sensitive information. Users are strongly advised to update their firmware to the latest version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.