CVE-2023-24143
Published: 03 February 2023
Summary
CVE-2023-24143 is a critical-severity Command Injection (CWE-77) vulnerability in Totolink Ca300-Poe Firmware. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 5.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
TOTOLINK CA300-PoE firmware version V6.2c.884 contains a command-injection vulnerability (CWE-77) in the setNetworkDiag function, where the NetDiagTracertHop parameter is passed to the system without adequate sanitization. The flaw received a CVSS 3.1 base score of 9.8, reflecting network attack vector, low attack complexity, and no required authentication or user interaction.
An unauthenticated remote attacker can supply a crafted NetDiagTracertHop value that results in arbitrary command execution on the device. Successful exploitation grants the attacker the ability to read, modify, or delete data and to fully compromise the confidentiality, integrity, and availability of the affected PoE access point.
Public proof-of-concept code demonstrating the injection was published on GitHub shortly after disclosure. The associated EPSS score rose from a low baseline to a peak of 0.3113 on 22 January 2025 before receding to its current value of 0.1490, indicating a measurable increase in observed exploitation interest well after the original publication date.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-28206
Vulnerability details
TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagTracertHop parameter in the setNetworkDiag function.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.