CVSS 3.1 Score 9.8 of 10 (high)


Published Dec 22, 2023
Updated: Dec 27, 2023


CVE-2023-51027 is a critical vulnerability affecting TOTOlink EX1800T V9.1.0cu.2112_B20220316. The vulnerability allows unauthorized arbitrary command execution through the 'apcliAuthMode' parameter of the setWiFiExtenderConfig interface of the cstecgi .cgi. The risk score for this vulnerability is 66, indicating a high potential danger to organizations. The base severity is rated as critical with a score of 9.8, and it requires no privileges and no user interaction to exploit it. The attack vector is through the network, and it has a high impact on both integrity and confidentiality. The availability impact is also rated as high. Remediation steps are not provided in the provided information, but immediate action should be taken to mitigate this vulnerability to prevent unauthorized access and potential exploitation by attackers.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-51027 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options