Cyber Resilience

CVE-2023-29800

CriticalPublic PoCRCE

Published: 14 April 2023

Published
14 April 2023
Modified
06 February 2025
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.1490 94.7th percentile
Risk Priority 29 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-29800 is a critical-severity Command Injection (CWE-77) vulnerability in Totolink X18 Firmware. Its CVSS base score is 9.8 (Critical).

Operationally, ranked in the top 5.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

TOTOLINK X18 firmware version V9.1.0cu.2024_B20220329 contains a command injection vulnerability in the UploadFirmwareFile function, where the FileName parameter is not properly sanitized. The flaw is tracked as CVE-2023-29800 with a CVSS 3.1 score of 9.8 and is classified under CWE-77.

An unauthenticated attacker with network access can supply a crafted FileName value to execute arbitrary operating-system commands on the device. Successful exploitation grants full control over confidentiality, integrity, and availability of the affected router without requiring user interaction or credentials.

The EPSS score for this CVE reached a peak of 0.2264 after disclosure and currently stands at 0.1490, indicating a material rise in predicted exploitation likelihood that warrants renewed attention from defenders. No vendor advisory or patch information is provided in the available references.

EU & UK References

Vulnerability details

TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the FileName parameter in the UploadFirmwareFile function.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

totolink
x18 firmware
9.1.0cu.2024_b20220329

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References