CVE-2023-52026

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 12, 2024
Updated: Jan 18, 2024

Summary

CVE-2023-52026 is a remote command execution (RCE) vulnerability found in TOTOlink EX1800T V9.1.0cu.2112_B20220316 through the telnet_enabled parameter of the setTelnetCfg interface. The affected product is usBOLg. To remediate this vulnerability, users should update to a patched version or disable the telnet functionality. The potential danger to an organization is high, as this vulnerability allows attackers to execute arbitrary commands remotely without requiring any privileges or user interaction, compromising the integrity and confidentiality of the system. The severity of this vulnerability is rated as CRITICAL with a CVSS score of 9.8 out of 10 by NIST, indicating a significant risk to organizations using the affected product.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-52026 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options