|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-07-23 | |
| Rule Name: | TOTOLINK EX1800T V9.1.0cu.2112_B20220316 Command Execution Vulnerability (CVE-2024-34257) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | TOTOLINK EX1800T V9.1.0cu.2112_B20220316 has a vulnerability in the apcliEncrypType parameter that allows unauthorized execution of arbitrary commands, allowing an attacker to obtain device administrator privileges. | |
| Impact: | An attacker can execute arbitrary command via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | https://immense-mirror-b42.notion.site/TOTOLINK-EX1800T-has-an-unauthorized-arbitrary-command-execution-vulnerability-2f3e308f5e1d45a2b8a64f198cacc350 |
|
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |