Description

An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121.1002 and TOTOLINK-CX-N300RT V2.1.6-B20170724.1420 and TOTOLINK-CX-N300RT V2.1.8-B20171113.1408 and TOTOLINK-CX-N300RT V2.1.8-B20191010.1107 and TOTOLINK-CX-N302RE V2.0.2-B20170511.1523 allows a remote attacker to execute arbitrary code via the /boafrm/formSysCmd component.

INFO

Published Date :

2024-11-27T00:00:00.000Z

Last Modified :

2024-11-29T19:37:04.757Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-51228 vulnerability.

Vendors Products
Totolink
  • A3002ru Firmware
  • N150rt Firmware
  • N300rt Firmware
  • N302re Firmware
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-51228.

URL Resource
https://github.com/yckuo-sdc/totolink-boa-api-vulnerabilities cve-icon cve-icon
https://totolink.tw/support_view/A3002RU cve-icon cve-icon
https://totolink.tw/support_view/N150RT cve-icon cve-icon
https://www.totolink.tw/products_view/N300RT cve-icon cve-icon
https://www.totolink.tw/products_view/N302RE cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact