How severe is CVE-2024-32352?

CVE-2024-32352 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-32352

Name: x5000r
Author: totolink

8.8HIGH

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "ipsecL2tpEnable" parameter in the "cstecgi.cgi" binary.

公開日: 5/14/2024更新日: 4/4/2025

説明

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "ipsecL2tpEnable" parameter in the "cstecgi.cgi" binary.

AI分析AIによる分析

影響を受ける製品

totolinkx5000r_firmware

9.1.0cu.2350_b20230313

totolinkx5000r

参照

https://github.com/1s1and123/Vulnerabilities/blob/main/device/ToToLink/X5000R/TOTOLink_X5000R_RCE.md
ExploitThird Party Advisory
https://www.totolink.net/
Product
https://github.com/1s1and123/Vulnerabilities/blob/main/device/ToToLink/X5000R/TOTOLink_X5000R_RCE.md
ExploitThird Party Advisory
https://www.totolink.net/
Product