CVE-2023-51100

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 26, 2023
Updated: Dec 30, 2023
CWE ID 78

Summary

CVE-2023-51100 is a command injection vulnerability found in Tenda W9 V1.0.0.7(4456)CN. The affected product is t9d-7. The vulnerability allows an attacker to inject and execute arbitrary commands through the function formGetDiagnoseInfo. The risk score for this vulnerability is 66, indicating a critical level of severity. The base score is 9.8, with high impacts on integrity and confidentiality. No privileges are required for exploitation, and there is no user interaction needed. The attack vector is through the network, and the availability impact is high. Remediation steps or solutions were not provided in the information provided.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-51100 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options