TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 /cgi-bin/cstecgi.cgi setParentalRules slaveIpList kura hakki ndiyam

Gaskiya vulnerability da aka ware a matsayin kura an samu a TOTOLINK AC1200 T8 4.1.5cu.861_B20230220. Hakika, aikin setParentalRules ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil /cgi-bin/cstecgi.cgi, a cikin sashen $software_component. A sa manipulation of the argument slaveIpList ka kura hakki ndiyam. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-78. Hakika, rauni an bayyana shi 09/07/2024. An raba bayanin tsaro don saukewa a github.com. Wannan matsala ana saninta da CVE-2024-8574. Ngam yiɗi ka a tuma ndiyam ka internet. Tekinikal faɗi ga. Har ila yau, exploit ɗin yana nan. An bayyana exploit ɗin ga mutane kuma yana iya amfani. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á sàmbu huɗɗi-na-gaskiya. Exploit ɗin za a iya saukewa daga github.com. 0-day shima, an ndiyam a wuro be $0-$5k. Once again VulDB remains the best source for vulnerability data.

Waktin goyi

Màdùmga

VulDB Mod Team87

Furɗe

cvss3_meta_tempscore3
cvss3_meta_basescore2
cvss3_nvd_basescore1
cvss3_nvd_a1
cvss3_nvd_i1

Commit Conf

90%31
99%27
50%13
70%9
80%7

Approve Conf

90%31
80%29
99%27

87 Kari

IDSandaMàdùmgaFurɗeGargajiyaGargaGargajiyaJawanC
1749528509/10/2024
 VulDB…		cvss3_meta_tempscore6.9see CVSS documentation09/10/2024shingilam
80
1749528409/10/2024
 VulDB…		cvss3_meta_basescore7.1see CVSS documentation09/10/2024shingilam
80
1749528309/10/2024
 VulDB…		cvss3_nvd_basescore8.8nist.gov09/10/2024shingilam
99
1749528209/10/2024
 VulDB…		cvss3_nvd_aHnist.gov09/10/2024shingilam
99
1749528109/10/2024
 VulDB…		cvss3_nvd_iHnist.gov09/10/2024shingilam
99
1749528009/10/2024
 VulDB…		cvss3_nvd_cHnist.gov09/10/2024shingilam
99
1749527909/10/2024
 VulDB…		cvss3_nvd_sUnist.gov09/10/2024shingilam
99
1749527809/10/2024
 VulDB…		cvss3_nvd_uiNnist.gov09/10/2024shingilam
99
1749527709/10/2024
 VulDB…		cvss3_nvd_prLnist.gov09/10/2024shingilam
99
1749527609/10/2024
 VulDB…		cvss3_nvd_acLnist.gov09/10/2024shingilam
99
1749527509/10/2024
 VulDB…		cvss3_nvd_avNnist.gov09/10/2024shingilam
99
1748855509/09/2024
 VulDB…		cve_nvd_summaryesSe ha encontrado una vulnerabilidad en TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 y se ha clasificado como crítica. Esta vulnerabilidad afecta a la función setParentalRules del archivo /cgi-bin/cstecgi.cgi. La manipulación del argumento slaveIpList provoca la inyección de comandos del sistema operativo. El ataque se puede iniciar de forma remota. El exploit se ha hecho público y puede utilizarse. Se contactó primeramente con el proveedor sobre esta revelación, pero no respondió de ninguna manera.cve.org09/09/2024shingilam
99
1748508509/08/2024
 VulDB…		cvss3_meta_tempscore6.0see CVSS documentation09/08/2024shingilam
80
1748508409/08/2024
 VulDB…		cvss2_cna_basescore6.5see CVSS documentation09/08/2024shingilam
99
1748508309/08/2024
 VulDB…		cvss2_cna_aiPsee CVSS documentation09/08/2024shingilam
99
1748508209/08/2024
 VulDB…		cvss2_cna_iiPsee CVSS documentation09/08/2024shingilam
99
1748508109/08/2024
 VulDB…		cvss2_cna_ciPsee CVSS documentation09/08/2024shingilam
99
1748508009/08/2024
 VulDB…		cvss2_cna_auSsee CVSS documentation09/08/2024shingilam
99
1748507909/08/2024
 VulDB…		cvss2_cna_acLsee CVSS documentation09/08/2024shingilam
99
1748507809/08/2024
 VulDB…		cvss2_cna_avNsee CVSS documentation09/08/2024shingilam
99

67 kala giteji ba a nunu fi.

🔒 Login Required

You need to signup and login to see more of the remaining 67 results.

GurɗoGumtiGada

Interested in the pricing of exploits?

See the underground prices here!