Authenticated Remote Command Execution Vulnerability in TOTOLINK X5000R
CVE-2024-32349

6MEDIUM

Key Information:

Vendor: TOTOLINK
Status: X5000r Firmware
Vendor: CVE Published:; 14 May 2024

Summary

An authenticated remote command execution vulnerability exists in the TOTOLINK X5000R router. The issue is triggered through manipulation of the 'mtu' parameters within the 'cstecgi.cgi' binary, which allows an attacker to execute arbitrary commands on the device. Due to the nature of this vulnerability, it necessitates the attacker to have valid authentication credentials, complicating unauthorized exploitation. However, once these credentials are compromised, the potential for malicious activities increases significantly, placing users' networks at risk. Organizations relying on affected versions of TOTOLINK's X5000R router are recommended to review their network security practices and apply any patches or updates provided by the vendor.

References

https://www.totolink.net/

https://github.com/1s1and123/Vulnerabilities/blob/main/de...

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 14, 2024