Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-47040

Published: 26/01/2023 Updated: 06/02/2023
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Rtf3505vw-n1 Firmware

Vulnerability Summary

An issue in ASKEY router RTF3505VW-N1 BR_SV_g000_R3505VMN1001_s32_7 allows malicious users to escalate privileges via running the tcpdump command after placing a crafted file in the /tmp directory and sending crafted packets through port 80.

Vulnerable Product Search on Vulmon Subscribe to Product

askey rtf3505vw-n1_firmware br_sv_g000_r3505vmn1001_s32_7

Github Repositories

https://github.com/leoservalli/Privilege-escalation-ASKEY

Privilege escalation vulnerability on ASKEY routers

Privilege-escalation-ASKEY-Router-RTF3505VW-N1 CVE-2022-47040 Privilege escalation vulnerability on ASKEY routers Device: ASKEY RTF3505VW-N1 Firmware: BR_SV_g000_R3505VMN1001_s32_7 (not tested in other version) CLI Version: Reduced_CLI_HGU_v13 Exploit: ASKEY RTF3505VW-N1 devices are provided with access through ssh into a restricted default shell: The restricted shell has acce

References

NVD-CWE-noinfohttps://github.com/leoservalli/Privilege-escalation-ASKEYhttps://nvd.nist.govhttps://github.com/leoservalli/Privilege-escalation-ASKEY
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook