Cyber Resilience

CVE-2023-33722

HighPublic PoCRCE

Published: 31 May 2023

Published
31 May 2023
Modified
10 January 2025
KEV Added
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0322 87.3th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-33722 is a high-severity Command Injection (CWE-77) vulnerability in Edimax Br-6288Acl Firmware. Its CVSS base score is 8.8 (High).

Operationally, ranked in the top 12.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

EDIMAX BR-6288ACL firmware version 1.12 contains an authenticated remote code execution vulnerability in the pppUserName parameter. The flaw is tracked as CVE-2023-33722 with a CVSS 3.1 score of 8.8 and is classified under CWE-77, indicating improper neutralization of special elements that enables command injection.

An attacker who has obtained valid credentials can send a crafted request over the network to execute arbitrary commands on the device. Successful exploitation grants the attacker full control over confidentiality, integrity, and availability of the affected router without requiring user interaction.

The EPSS score for this CVE rose from low values to a peak of 0.0637 before receding to the current level of 0.0322, indicating a temporary increase in exploitation interest after disclosure. No public advisories or patches detailing mitigation steps are described in the supplied references.

EU & UK References

Vulnerability details

EDIMAX BR-6288ACL v1.12 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the pppUserName parameter.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

edimax
br-6288acl firmware
1.12

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References