CVE-2023-36498

Exploit

EPSS 0.78%
Published 06.02.2024 17:15:08
Last modified 21.11.2024 08:09:50
Source talos-cna@cisco.com
Teams watchlist Login
Open Login

A post-authentication command injection vulnerability exists in the PPTP client functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. A specially crafted HTTP request can lead to arbitrary command injection. An attacker can make an authenticated HTTP request to trigger this vulnerability and gain access to an unrestricted shell.

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Tp-link ≫ Er7206 Firmware Version1.3.0 Updatebuild_20230322_rel_70591

Tp-link ≫ Er7206 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.78%	0.727

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
talos-cna@cisco.com	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1853

Third Party Advisory

Exploit

Technical Description

https://nvd.nist.gov/vuln/detail/CVE-2023-36498

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-36498

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-36498

EUVD