CVE-2024-1000 in N200REinformation

Résumé

par MITRE • 29/01/2024

A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It has been rated as critical. This issue affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument command leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-252269 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsable

VulDB

Réserver

29/01/2024

Divulgation

29/01/2024

Modérer

accepté

Entrée

VDB-252269

CPE

prêt

Exploitation

Télécharger

EPSS

0.01250

KEV

non

Activités

très faible

Sources

Interested in the pricing of exploits?

See the underground prices here!