CVE-2023-31729: Command Injection
First published: Thu May 18 2023(Updated: )
TOTOLINK A3300R v17.0.0cu.557 is vulnerable to Command Injection via /cgi-bin/cstecgi.cgi.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Totolink A3300r Firmware | =17.0.0cu.557 | |
| TOTOLINK A3300R | ||
| All of | ||
| Totolink A3300r Firmware | =17.0.0cu.557 | |
| TOTOLINK A3300R |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of TOTOLINK A3300R?
The vulnerability ID of TOTOLINK A3300R is CVE-2023-31729.
What is the severity rating of CVE-2023-31729?
CVE-2023-31729 has a severity rating of critical with a value of 9.8.
What is affected by the vulnerability CVE-2023-31729?
TOTOLINK A3300R v17.0.0cu.557 firmware is affected by the vulnerability CVE-2023-31729.
How can I fix the vulnerability CVE-2023-31729?
Currently, there is no official fix available for CVE-2023-31729. It is recommended to contact the vendor for updates or apply any patches or workarounds provided.
What is command injection?
Command injection is a vulnerability that allows an attacker to execute arbitrary system commands on a target server or application.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/tags
- agent/references
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/totolink
- canonical/totolink a3300r firmware
- version/totolink a3300r firmware/17.0.0cu.557
- canonical/totolink a3300r