Statements (19)
Predicate | Object |
---|---|
gptkbp:instanceOf |
CVE Identifier
|
gptkbp:affects |
gptkb:TOTOLINK_A3100R_firmware
|
gptkbp:describes |
TOTOLINK A3100R V5.9c.4577_B20201231 was discovered to contain a command injection vulnerability via the time parameter in the setSysTimeCfg function.
|
gptkbp:exploits |
Remote code execution
|
gptkbp:hasAttackVector |
gptkb:network_protocol
|
gptkbp:hasCVEID |
gptkb:CVE-2022-25075
|
gptkbp:hasCVSSScore |
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
gptkbp:hasCWE |
gptkb:CWE-77
|
gptkbp:hasImpactAvailability |
High
|
gptkbp:hasImpactConfidentiality |
High
|
gptkbp:hasImpactIntegrity |
High
|
gptkbp:hasPrivilegesRequired |
nan
|
gptkbp:hasUserInteraction |
nan
|
https://www.w3.org/2000/01/rdf-schema#label |
CVE-2022-25075
|
gptkbp:publicationDate |
2022-02-18
|
gptkbp:vulnerableTo |
Command Injection
|
gptkbp:bfsParent |
gptkb:MHCHAOS
|
gptkbp:bfsLayer |
6
|