CVE-2023-51016

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 22, 2023
Updated: Dec 27, 2023
CWE ID 77

Summary

CVE-2023-51016 is a vulnerability affecting TOTOlink EX1800T v9.1.0cu.2112_B20220316. Hackers can exploit this issue by sending unauthorized arbitrary commands through the setRebootScheCfg interface in the cstecgi .cgi. Successful exploitation could result in significant damage, including system compromise or data loss. Users are strongly advised to update their systems to a non-vulnerable version as soon as possible to mitigate this risk. The vulnerability allows attackers to execute commands at the root level, increasing the attack surface for potential threats.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share