CVE-2023-31569
Published: 06 June 2023
Summary
CVE-2023-31569 is a critical-severity Command Injection (CWE-77) vulnerability in Totolink X5000R Firmware. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 6.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
The vulnerability CVE-2023-31569 is a command injection flaw (CWE-77) in the TOTOLINK X5000R router running firmware version V9.1.0cu.2350_B20230313. The issue is present in the setWanCfg function responsible for processing WAN configuration parameters.
Remote attackers can exploit the flaw over the network without authentication or user interaction. Successful exploitation allows arbitrary command execution on the device, leading to full compromise of confidentiality, integrity, and availability as reflected in the CVSS 9.8 vector.
Public references consist of the vendor product page and GitHub repositories that disclose technical details and proof-of-concept information for the affected firmware.
The associated EPSS score stands at 0.1093 with no material change from its recorded peak.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-35870
Vulnerability details
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection via the setWanCfg function.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.