Sign-up

ID

VAR-202303-2072


CVE

CVE-2022-28495


TITLE

TOTOLINK CP900 Command Injection Vulnerability

Trust: 1.2

sources: CNVD: CNVD-2023-51677 // CNNVD: CNNVD-202303-1948

DESCRIPTION

TOTOLink outdoor CPE CP900 V6.3c.566_B20171026 is discovered to contain a command injection vulnerability in the setWebWlanIdx function via the webWlanIdx parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request. TOTOLINK of cp900 The firmware has OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. TOTOLINK CP900 is a wireless router produced by China Zeon Electronics (TOTOLINK). There is a command injection vulnerability in TOTOLINK CP900. The vulnerability stems from the failure of the setWebWlanIdx function to properly filter special characters, commands, etc. in constructing commands

Trust: 2.25

sources: NVD: CVE-2022-28495 // JVNDB: JVNDB-2022-021409 // CNVD: CNVD-2023-51677 // VULMON: CVE-2022-28495

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2023-51677

AFFECTED PRODUCTS

vendor:totolinkmodel:cp900scope:eqversion:6.3c.566_b20171026

Trust: 1.0

vendor:totolinkmodel:cp900scope:eqversion:cp900 firmware 6.3c.566 b20171026

Trust: 0.8

vendor:totolinkmodel:cp900scope: - version: -

Trust: 0.8

vendor:totolinkmodel:cp900scope:eqversion: -

Trust: 0.8

vendor:totolinkmodel:cp900 6.3c.566 b20171026scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2023-51677 // JVNDB: JVNDB-2022-021409 // NVD: CVE-2022-28495

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2022-28495
value: CRITICAL

Trust: 1.0

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2022-28495
value: CRITICAL

Trust: 1.0

NVD: CVE-2022-28495
value: CRITICAL

Trust: 0.8

CNVD: CNVD-2023-51677
value: HIGH

Trust: 0.6

CNNVD: CNNVD-202303-1948
value: CRITICAL

Trust: 0.6

CNVD: CNVD-2023-51677
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

nvd@nist.gov: CVE-2022-28495
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.1

Trust: 2.0

NVD: CVE-2022-28495
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2023-51677 // JVNDB: JVNDB-2022-021409 // CNNVD: CNNVD-202303-1948 // NVD: CVE-2022-28495 // NVD: CVE-2022-28495

PROBLEMTYPE DATA

problemtype:CWE-78

Trust: 1.0

problemtype:OS Command injection (CWE-78) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2022-021409 // NVD: CVE-2022-28495

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202303-1948

TYPE

command injection

Trust: 0.6

sources: CNNVD: CNNVD-202303-1948

PATCH

title:Patch for TOTOLINK CP900 Command Injection Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/437241

Trust: 0.6

title:TOTOLINK CP900 Fixes for command injection vulnerabilitiesurl:http://123.124.177.30/web/xxk/bdxqById.tag?id=230944

Trust: 0.6

sources: CNVD: CNVD-2023-51677 // CNNVD: CNNVD-202303-1948

EXTERNAL IDS

db:NVDid:CVE-2022-28495

Trust: 3.9

db:JVNDBid:JVNDB-2022-021409

Trust: 0.8

db:CNVDid:CNVD-2023-51677

Trust: 0.6

db:CNNVDid:CNNVD-202303-1948

Trust: 0.6

db:VULMONid:CVE-2022-28495

Trust: 0.1

sources: CNVD: CNVD-2023-51677 // VULMON: CVE-2022-28495 // JVNDB: JVNDB-2022-021409 // CNNVD: CNNVD-202303-1948 // NVD: CVE-2022-28495

REFERENCES

url:https://github.com/b2efly/cve/blob/main/totolink/cp900/3/3.md

Trust: 2.5

url:https://github.com/b2efly/router/blob/main/totolink/cp900/3/3.md

Trust: 1.7

url:https://nvd.nist.gov/vuln/detail/cve-2022-28495

Trust: 1.4

url:https://cxsecurity.com/cveshow/cve-2022-28495/

Trust: 0.6

url:https://nvd.nist.gov

Trust: 0.1

sources: CNVD: CNVD-2023-51677 // VULMON: CVE-2022-28495 // JVNDB: JVNDB-2022-021409 // CNNVD: CNNVD-202303-1948 // NVD: CVE-2022-28495

SOURCES

db:CNVDid:CNVD-2023-51677
db:VULMONid:CVE-2022-28495
db:JVNDBid:JVNDB-2022-021409
db:CNNVDid:CNNVD-202303-1948
db:NVDid:CVE-2022-28495

LAST UPDATE DATE

2025-02-23T23:18:59.242000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2023-51677date:2023-06-27T00:00:00
db:VULMONid:CVE-2022-28495date:2023-03-24T00:00:00
db:JVNDBid:JVNDB-2022-021409date:2023-11-10T04:49:00
db:CNNVDid:CNNVD-202303-1948date:2023-03-29T00:00:00
db:NVDid:CVE-2022-28495date:2025-02-20T19:15:09.970

SOURCES RELEASE DATE

db:CNVDid:CNVD-2023-51677date:2023-06-29T00:00:00
db:VULMONid:CVE-2022-28495date:2023-03-24T00:00:00
db:JVNDBid:JVNDB-2022-021409date:2023-11-10T00:00:00
db:CNNVDid:CNNVD-202303-1948date:2023-03-24T00:00:00
db:NVDid:CVE-2022-28495date:2023-03-24T14:15:09.777