Cyber Resilience

CVE-2023-31569

CriticalPublic PoCRCE

Published: 06 June 2023

Published
06 June 2023
Modified
08 January 2025
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.1093 93.6th percentile
Risk Priority 26 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-31569 is a critical-severity Command Injection (CWE-77) vulnerability in Totolink X5000R Firmware. Its CVSS base score is 9.8 (Critical).

Operationally, ranked in the top 6.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

The vulnerability CVE-2023-31569 is a command injection flaw (CWE-77) in the TOTOLINK X5000R router running firmware version V9.1.0cu.2350_B20230313. The issue is present in the setWanCfg function responsible for processing WAN configuration parameters.

Remote attackers can exploit the flaw over the network without authentication or user interaction. Successful exploitation allows arbitrary command execution on the device, leading to full compromise of confidentiality, integrity, and availability as reflected in the CVSS 9.8 vector.

Public references consist of the vendor product page and GitHub repositories that disclose technical details and proof-of-concept information for the affected firmware.

The associated EPSS score stands at 0.1093 with no material change from its recorded peak.

EU & UK References

Vulnerability details

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection via the setWanCfg function.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

totolink
x5000r firmware
9.1.0cu.2350_b20230313

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References