exploitDog

CVE-2021-42872

Опубликовано: 02 июн. 2022

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Средний

Описание

TOTOLINK EX1200T V4.1.2cu.5215 is affected by a command injection vulnerability that can remotely execute arbitrary code.

Ссылки

http://ex1200t.com
Broken Link
URL Repurposed
http://totolink.net/
Vendor Advisory
https://github.com/p1Kk/vuln/blob/main/totolink_ex1200t_NoticeUrl_rce4.md
Exploit
Third Party Advisory
http://ex1200t.com
Broken Link
URL Repurposed
http://totolink.net/
Vendor Advisory
https://github.com/p1Kk/vuln/blob/main/totolink_ex1200t_NoticeUrl_rce4.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:totolink:ex1200t_firmware:4.1.2cu.5215:*:*:*:*:*:*:*

cpe:2.3:h:totolink:ex1200t:-:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.11409

Средний

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-78

Связанные уязвимости

GHSA-8rw9-r52p-wrmg

CVSS3: 9.8

github

больше 3 лет назад

TOTOLINK EX1200T V4.1.2cu.5215 is affected by a command injection vulnerability that can remotely execute arbitrary code.

EPSS

Процентиль: 93%

0.11409

Средний

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-78