CVE-2023-43141

TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137 are vulnerable to Incorrect Access Control.
References
Link Resource
http://totolink.com Product
https://github.com/Blue-And-White/vul/blob/main/Iot/TOTOLINK/1/readme.md Broken Link Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:h:totolink:a3700r:-:*:*:*:*:*:*:*
cpe:2.3:o:totolink:a3700r_firmware:9.1.2u.6134_b20201202:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:h:totolink:n600r:-:*:*:*:*:*:*:*
cpe:2.3:o:totolink:n600r_firmware:4.3.0cu.7647_b20210106:*:*:*:*:*:*:*

History

25 Sep 2024, 01:36

Type Values Removed Values Added
CWE CWE-284

26 Sep 2023, 16:55

Type Values Removed Values Added
References (MISC) http://totolink.com - (MISC) http://totolink.com - Product
References (MISC) https://github.com/Blue-And-White/vul/blob/main/Iot/TOTOLINK/1/readme.md - (MISC) https://github.com/Blue-And-White/vul/blob/main/Iot/TOTOLINK/1/readme.md - Broken Link, Exploit, Third Party Advisory
CPE cpe:2.3:o:totolink:n600r_firmware:4.3.0cu.7647_b20210106:*:*:*:*:*:*:*
cpe:2.3:h:totolink:a3700r:-:*:*:*:*:*:*:*
cpe:2.3:o:totolink:a3700r_firmware:9.1.2u.6134_b20201202:*:*:*:*:*:*:*
cpe:2.3:h:totolink:n600r:-:*:*:*:*:*:*:*
CWE NVD-CWE-Other
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
First Time Totolink n600r Firmware
Totolink
Totolink a3700r Firmware
Totolink n600r
Totolink a3700r

25 Sep 2023, 16:16

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-25 16:15

Updated : 2024-09-25 01:36


NVD link : CVE-2023-43141

Mitre link : CVE-2023-43141

CVE.ORG link : CVE-2023-43141


JSON object : View

Products Affected

totolink

  • n600r
  • a3700r
  • n600r_firmware
  • a3700r_firmware
CWE
NVD-CWE-Other CWE-284

Improper Access Control