CVE-2023-51028 | Totolink EX1800T 9.1.0cu.2112_B20220316 cstecgi.cgi setWiFiExtenderConfig apcliChannel Privilege Escalation

Inserito da Angelo Barbosa | Dic 22, 2023 | CVE

A vulnerability classified as critical has been found in Totolink EX1800T 9.1.0cu.2112_B20220316. This affects the function setWiFiExtenderConfig of the file cstecgi.cgi. The manipulation of the argument apcliChannel leads to Privilege Escalation.

This vulnerability is uniquely identified as CVE-2023-51028. The attack needs to be done within the local network. There is no exploit available.

CVE-2023-51028 | Totolink EX1800T 9.1.0cu.2112_B20220316 cstecgi.cgi setWiFiExtenderConfig apcliChannel Privilege Escalation

Post correlati

CVE-2023-42891 | Apple macOS up to 12.7.1/13.6.2/14.1 Keystroke permission (HT214036)

CVE-2024-27455 | Bentley Assetwise ALIM Web Session Token information disclosure

CVE-2024-24782 | HIMA X-CPU 31 Ping Request origin validation (VDE-2024-013)

CVE-2024-50382 | randombit Botan up to 3.5.x ghash.cpp control flow