CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-50147

There is an arbitrary command execution vulnerability in the setDiagnosisCfg function of the cstecgi .cgi of the TOTOlink A3700R router device in its firmware version V9.1.2u.5822_B20200513.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://815yang.github.io/2023/12/04/a3700r/TOTOlink%20A3700R%28setDiagnosisCfg%29/
https://815yang.github.io/2023/12/04/a3700r/TOTOlink%20A3700R%28setDiagnosisCfg%29/

Products affected by CVE-2023-50147

Totolink » A3700r » Version: N/A

cpe:2.3:h:totolink:a3700r:-
Totolink » A3700r Firmware » Version: 9.1.2u.5822_b20200513

cpe:2.3:o:totolink:a3700r_firmware:9.1.2u.5822_b20200513

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-50147

Products

Pricing

Contact Us