免费

CVE-2024-42545 – OpenCVE

TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function. Metrics CVSS v4.0 N/A CVSS v3.1 9.8 Critical CVSS v3.0 N/A CVSS v2 N/A KEV no SSVC yes No CVSS v4.0 Attack Vector Network Attack Complexity Low Privileges Required None Scope Unchanged Confidentiality Impact High Integrity Impact High Availability Impact High User Interaction None No CVSS v3.0 No CVSS v2 This CVE is not in the KEV list. Exploitation poc Automatable yes Technical Impact total Affected Vendors & Products All CPE Configurations Affected Packages Vendors Products Totolink A3700r A3700r Firmware Configuration 1 [-] AND cpe:2.3:o:totolink:a3700r_firmware:9.1.2u.5822_b20200513:*:*:*:*:*:*:* cpe:2.3:h:totolink:a3700r:-:*:*:*:*:*:*:* No data. References Link Providers https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3700R/setWizardCfg.md History Tue, 13 Aug 2024 15:30:00 +0000 Type Values Removed Values Added Metrics ssvc {‘options’: {‘Auto…