Details of VAR-202405-0812

ID

VAR-202405-0812

CVE

CVE-2024-32349

TITLE

TOTOLINK of X5000R Command injection vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2024-021522

DESCRIPTION

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "mtu" parameters in the "cstecgi.cgi" binary. TOTOLINK of X5000R Firmware contains a command injection vulnerability.Information may be obtained and information may be tampered with. TOTOLINK X5000R is a router of China's TOTOLINK Electronics. The vulnerability is caused by the mtu parameter of cstecgi.cgi failing to properly filter the special elements of the constructed code segment. An attacker can exploit this vulnerability to cause arbitrary code execution

Trust: 2.16

sources: NVD: CVE-2024-32349 // JVNDB: JVNDB-2024-021522 // CNVD: CNVD-2024-40411

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2024-40411

AFFECTED PRODUCTS

vendor:	totolink	model:	x5000r	scope:	eq	version:	9.1.0cu.2350_b20230313	Trust: 1.0
vendor:	totolink	model:	x5000r	scope:	-	version:	-	Trust: 0.8
vendor:	totolink	model:	x5000r	scope:	eq	version:	x5000r firmware 9.1.0cu.2350 b20230313	Trust: 0.8
vendor:	totolink	model:	x5000r	scope:	eq	version:	-	Trust: 0.8
vendor:	totolink	model:	x5000r v9.1.0cu.2350 b20230313	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2024-40411 // JVNDB: JVNDB-2024-021522 // NVD: CVE-2024-32349

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2024-32349
value:	MEDIUM
Trust: 1.0
OTHER:	JVNDB-2024-021522
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2024-40411
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2024-40411
severity:	MEDIUM
baseScore:	5.9
vectorString:	AV:L/AC:L/AU:M/C:C/I:C/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	MULTIPLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	NONE
exploitabilityScore:	2.5
impactScore:	9.2
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2024-32349
baseSeverity:	MEDIUM
baseScore:	6.0
vectorString:	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	0.8
impactScore:	5.2
version:	3.1
Trust: 1.0
OTHER:	JVNDB-2024-021522
baseSeverity:	MEDIUM
baseScore:	6.0
vectorString:	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2024-40411 // JVNDB: JVNDB-2024-021522 // NVD: CVE-2024-32349

PROBLEMTYPE DATA

problemtype:	CWE-77	Trust: 1.0
problemtype:	Command injection (CWE-77) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-021522 // NVD: CVE-2024-32349

EXTERNAL IDS

db:	NVD	id:	CVE-2024-32349	Trust: 3.2
db:	JVNDB	id:	JVNDB-2024-021522	Trust: 0.8
db:	CNVD	id:	CNVD-2024-40411	Trust: 0.6

sources: CNVD: CNVD-2024-40411 // JVNDB: JVNDB-2024-021522 // NVD: CVE-2024-32349

REFERENCES

url:	https://github.com/1s1and123/vulnerabilities/blob/main/device/totolink/x5000r/totolink_x5000r_rce.md	Trust: 1.8
url:	https://www.totolink.net/	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2024-32349	Trust: 1.4

sources: CNVD: CNVD-2024-40411 // JVNDB: JVNDB-2024-021522 // NVD: CVE-2024-32349

SOURCES

db:	CNVD	id:	CNVD-2024-40411
db:	JVNDB	id:	JVNDB-2024-021522
db:	NVD	id:	CVE-2024-32349

LAST UPDATE DATE

2025-04-08T22:45:27.003000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2024-40411	date:	2024-10-11T00:00:00
db:	JVNDB	id:	JVNDB-2024-021522	date:	2025-04-07T07:14:00
db:	NVD	id:	CVE-2024-32349	date:	2025-04-04T14:28:31.007

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2024-40411	date:	2024-10-11T00:00:00
db:	JVNDB	id:	JVNDB-2024-021522	date:	2025-04-07T00:00:00
db:	NVD	id:	CVE-2024-32349	date:	2024-05-14T16:17:02.243