Details of VAR-202405-1423

ID

VAR-202405-1423

CVE

CVE-2024-32352

TITLE

TOTOLINK X5000R ipsecL2tpEnable parameter code execution vulnerability

Trust: 0.6

sources: CNVD: CNVD-2024-40408

DESCRIPTION

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "ipsecL2tpEnable" parameter in the "cstecgi.cgi" binary. TOTOLINK X5000R is a router of China's TOTOLINK Electronics. The vulnerability is caused by the ipsecL2tpEnable parameter of cstecgi.cgi failing to properly filter special elements of the constructed code segment. An attacker can exploit this vulnerability to cause arbitrary code execution

Trust: 1.44

sources: NVD: CVE-2024-32352 // CNVD: CNVD-2024-40408

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2024-40408

AFFECTED PRODUCTS

vendor:

totolink

model:

x5000r v9.1.0cu.2350 b20230313

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2024-40408

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2024-32352
value:	HIGH
Trust: 1.0
CNVD:	CNVD-2024-40408
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2024-40408
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2024-32352
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2024-40408 // NVD: CVE-2024-32352

PROBLEMTYPE DATA

problemtype:

CWE-94

Trust: 1.0

sources: NVD: CVE-2024-32352

EXTERNAL IDS

db:	NVD	id:	CVE-2024-32352	Trust: 1.6
db:	CNVD	id:	CNVD-2024-40408	Trust: 0.6

sources: CNVD: CNVD-2024-40408 // NVD: CVE-2024-32352

REFERENCES

url:	https://github.com/1s1and123/vulnerabilities/blob/main/device/totolink/x5000r/totolink_x5000r_rce.md	Trust: 1.0
url:	https://www.totolink.net/	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2024-32352	Trust: 0.6

sources: CNVD: CNVD-2024-40408 // NVD: CVE-2024-32352

SOURCES

db:	CNVD	id:	CNVD-2024-40408
db:	NVD	id:	CVE-2024-32352

LAST UPDATE DATE

2024-10-13T23:10:37.054000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2024-40408	date:	2024-10-11T00:00:00
db:	NVD	id:	CVE-2024-32352	date:	2024-07-03T01:56:21.743

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2024-40408	date:	2024-10-11T00:00:00
db:	NVD	id:	CVE-2024-32352	date:	2024-05-14T16:17:03.113