exploitDog

CVE-2022-32993

Опубликовано: 29 авг. 2022

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

TOTOLINK A7000R V4.1cu.4134 was discovered to contain an access control issue via /cgi-bin/ExportSettings.sh.

Ссылки

http://totolink.com
Product
https://github.com/laotun-s/POC/blob/main/CVE-2022-32993.txt
Third Party Advisory
http://totolink.com
Product
https://github.com/laotun-s/POC/blob/main/CVE-2022-32993.txt
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:totolink:a7000r_firmware:4.1cu.4134:*:*:*:*:*:*:*

cpe:2.3:h:totolink:a7000r:-:*:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00355

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j937-h7hx-83cg

CVSS3: 9.8

github

больше 3 лет назад

TOTOLINK A7000R V4.1cu.4134 was discovered to contain an access control issue via /cgi-bin/ExportSettings.sh.

EPSS

Процентиль: 57%

0.00355

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-Other