CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-31807

TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE) vulnerability via the hostTime parameter in the NTPSyncWithHost function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 79.1%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/EX200/CI_2_NTPSyncWithHost/CI.md
https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/EX200/CI_2_NTPSyncWithHost/CI.md

Products affected by CVE-2024-31807

Totolink » Ex200 » Version: N/A

cpe:2.3:h:totolink:ex200:-
Totolink » Ex200 Firmware » Version: 4.0.3c.7646_b20201211

cpe:2.3:o:totolink:ex200_firmware:4.0.3c.7646_b20201211

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-31807

Products

Pricing

Contact Us