CVE-2024-32352 | Totolink X5000R 9.1.0cu.2350_B20230313 cstecgi.cgi ipsecL2tpEnable Privilege Escalation

Inserito da Angelo Barbosa | Mag 14, 2024 | CVE

A vulnerability was found in Totolink X5000R 9.1.0cu.2350_B20230313. It has been declared as critical. This vulnerability affects unknown code of the file cstecgi.cgi. The manipulation of the argument ipsecL2tpEnable leads to Privilege Escalation.

This vulnerability was named CVE-2024-32352. The attack can be initiated remotely. There is no exploit available.

CVE-2024-32352 | Totolink X5000R 9.1.0cu.2350_B20230313 cstecgi.cgi ipsecL2tpEnable Privilege Escalation

Post correlati

CVE-2024-45714 | SolarWinds Serv-U up to 15.4.2 HF2 cross site scripting

CVE-2024-26010 | Fortinet FortiPAM/FortiSwitchManager/FortiOS/FortiProxy Packets stack-based overflow (FG-IR-24-036)

CVE-2024-0445 | Plus Addons for Elementor Plugin up to 5.4.2 on WordPress cross site scripting

CVE-2024-5032 | SULly Plugin up to 4.3.0 on WordPress cross site scripting