Vulnerability Details CVE-2023-48860
TOTOLINK N300RT version 3.2.4-B20180730.0906 has a post-authentication RCE due to incorrect access control, allows attackers can bypass front-end security restrictions and execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.3%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-48860
-
cpe:2.3:h:totolink:n300rt:-
-
cpe:2.3:o:totolink:n300rt_firmware:3.2.4-b20180730.0906