CVE-2023-51014 | Totolink EX1800T 9.1.0cu.2112_B20220316 cstecgi.cgi setLanConfig lanSecDns Privilege Escalation

Posted by Angelo Barbosa | Dec 22, 2023 | CVE

A vulnerability has been found in Totolink EX1800T 9.1.0cu.2112_B20220316 and classified as critical. This vulnerability affects the function setLanConfig of the file cstecgi.cgi. The manipulation of the argument lanSecDns leads to Privilege Escalation.

This vulnerability was named CVE-2023-51014. Access to the local network is required for this attack. There is no exploit available.

CVE-2023-51014 | Totolink EX1800T 9.1.0cu.2112_B20220316 cstecgi.cgi setLanConfig lanSecDns Privilege Escalation

Related Posts

CVE-2015-10123 | WAGO Controller BACnet IP up to FW13 Packets buffer overflow (VDE-2023-039)

CVE-2024-26276 | Siemens Parasolid X_T File allocation of resources (ssa-222019)

CVE-2022-48838 | Linux Kernel up to 5.16.16 USB dev_uevent use after free

CVE-2023-40704 | Philips Vue PACS prior 12.2.8.410 default credentials (icsma-24-200-01)