VYPR
Unrated severityNVD Advisory· Published Dec 6, 2023· Updated Aug 2, 2024

CVE-2023-48859

CVE-2023-48859

Description

TOTOLINK A3002RU version 2.0.0-B20190902.1958 has a post-authentication RCE due to incorrect access control, allows attackers to bypass front-end security restrictions and execute arbitrary code.

Affected products

2
  • Totolink/A3002RUcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = 2.0.0-B20190902.1958

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2023-48859 · VYPR