CVE-2023-46551

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 25, 2023
Updated: Nov 1, 2023
CWE ID 787

Summary

CVE-2023-46551 is a newly disclosed vulnerability affecting the TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web firmware. The issue was identified as a stack overflow in the function "formReflashClientTbl," which can potentially be exploited by an attacker to execute arbitrary code or cause the device to crash. Successful exploitation may lead to unauthorized access or denial of service to the affected device. This vulnerability poses a significant risk, and it is recommended that users update their firmware to the latest version as soon as possible to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share