CVE-2023-36953
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Oct 16, 2023
Updated: Oct 19, 2023
CWE ID 77
Summary
CVE-2023-36953 is a recently disclosed vulnerability affecting TOTOLINK CP300+ V5.2cu.7594_B20200910 and older versions. This issue allows an attacker to inject malicious commands into the affected system, potentially gaining unauthorized control. The vulnerability could be exploited through a specially crafted request sent to the affected device, posing a significant risk to network security. Users are strongly urged to apply the available patch or update their devices as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- TOTOLINK