Buffer overflow in Linksys WRT54GL
CVE-2022-43970

7.2HIGH

Key Information:

Vendor: Linksys
Status: Wrt54gl Wireless-g Broadband Router
Vendor: CVE Published:; 9 January 2023

What is CVE-2022-43970?

A buffer overflow flaw exists in the Linksys WRT54GL Wireless-G Broadband Router, specifically in the Start_EPI function within the httpd binary. This vulnerability allows an authenticated attacker with administrator privileges to execute arbitrary commands on the Linux operating system as root. The exploit can be executed over the network by sending a specially crafted POST request to the /apply.cgi endpoint, potentially compromising the device's security and integrity. Users should ensure their firmware is updated to mitigate this risk.

Affected Version(s)

WRT54GL Wireless-G Broadband Router Firmware <= 4.30.18.006

References

https://youtu.be/73-1lhvJPNg

https://youtu.be/TeWAmZaKQ_w

https://youtu.be/RfWVYCUBNZ0

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 9, 2023
Vulnerability Reserved
Oct 28, 2022

Credit

Jessie Chick of Trellix ARC