CVE-2023-52026

Summary

CVE-2023-52026 is a newly identified remote command execution (RCE) vulnerability affecting the TOTOlink EX1800T V9.1.0cu.2112_B20220316 firmware. By exploiting the telnet_enabled parameter of the setTelnetCfg interface, an attacker can remotely execute arbitrary commands on the affected device. This vulnerability poses a significant risk, as it can be exploited by cybercriminals to gain unauthorized access and potentially cause damage to the targeted system. It is highly recommended that users apply the necessary patches or updates to mitigate this threat as soon as possible. The setTelnetCfg interface of TOTOlink EX1800T V9.1.0cu.2112_B20220316 contains a vulnerability, CVE-2023-52026, allowing remote command execution through the telnet_enabled parameter. An attacker can exploit this weakness to execute arbitrary commands on the device. This poses a significant risk, as unauthorized access could lead to potential damage. Users are advised to promptly install patches or updates to eliminate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.