CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41442

An issue in Kloudq Technologies Limited Tor Equip 1.0, Tor Loco Mini 1.0 through 3.1 allows a remote attacker to execute arbitrary code via a crafted request to the MQTT component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.6%

CVSS Severity

CVSS v3 Score 9.8

References

https://writeups.ayyappan.me/v/tor-iot-mqtt/
https://writeups.ayyappan.me/v/tor-iot-mqtt/

Products affected by CVE-2023-41442

Kloudq » Tor Equip Gateway » Version: 1.0

cpe:2.3:a:kloudq:tor_equip_gateway:1.0
Kloudq » Tor Lenz » Version: 0.0.1

cpe:2.3:a:kloudq:tor_lenz:0.0.1
Kloudq » Tor Loco Min » Version: 1.0

cpe:2.3:a:kloudq:tor_loco_min:1.0
Kloudq » Tor Loco Min » Version: 3.1

cpe:2.3:a:kloudq:tor_loco_min:3.1
Kloudq » Tor Shield » Version: 1.0

cpe:2.3:a:kloudq:tor_shield:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41442

Products

Pricing

Contact Us