TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to arbitrary command execution in the ‘host_time’ parameter of the NTPSyncWithHost interface of the cstecgi .cgi.
References
Link | Resource |
---|---|
https://815yang.github.io/2023/12/11/EX1800T/2/TOTOlinkEX1800T_V9.1.0cu.2112_B2022031NTPSyncWithHost-host_time/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-12-22T00:00:00
Updated: 2023-12-22T18:12:02.731821
Reserved: 2023-12-18T00:00:00
Link: CVE-2023-51023
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-22T18:15:07.770
Modified: 2023-12-27T21:11:11.397
Link: CVE-2023-51023
JSON object: View
Redhat Information
No data.
CWE