CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-31809

TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE) vulnerability via the FileName parameter in the setUpgradeFW function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.015

EPSS Ranking 80.3%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/EX200/CI_4_setUpgradeFW/CI.md
https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/EX200/CI_4_setUpgradeFW/CI.md

Products affected by CVE-2024-31809

Totolink » Ex200 » Version: N/A

cpe:2.3:h:totolink:ex200:-
Totolink » Ex200 Firmware » Version: 4.0.3c.7646_b20201211

cpe:2.3:o:totolink:ex200_firmware:4.0.3c.7646_b20201211

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-31809

Products

Pricing

Contact Us