CVE-2023-46547
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-46547 is a newly identified vulnerability affecting the web interface of TOTOLINK X2000R Gh v1.0.0-B20230221.0948. A stack overflow issue was discovered in the function formSysLog. Successful exploitation of this vulnerability could lead to the crash of the affected component, potentially resulting in denial of service or remote code execution. Attackers can take advantage of this flaw by sending specially crafted input to the vulnerable function, causing it to exceed the stack memory limit. Users are advised to apply the necessary patches or upgrades to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- TOTOLINK