CVE-2022-25075

GPTKB entity

Statements (19)
Predicate Object
gptkbp:instanceOf CVE Identifier
gptkbp:affects gptkb:TOTOLINK_A3100R_firmware
gptkbp:describes TOTOLINK A3100R V5.9c.4577_B20201231 was discovered to contain a command injection vulnerability via the time parameter in the setSysTimeCfg function.
gptkbp:exploits Remote code execution
gptkbp:hasAttackVector gptkb:network_protocol
gptkbp:hasCVEID gptkb:CVE-2022-25075
gptkbp:hasCVSSScore 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
gptkbp:hasCWE gptkb:CWE-77
gptkbp:hasImpactAvailability High
gptkbp:hasImpactConfidentiality High
gptkbp:hasImpactIntegrity High
gptkbp:hasPrivilegesRequired nan
gptkbp:hasUserInteraction nan
https://www.w3.org/2000/01/rdf-schema#label CVE-2022-25075
gptkbp:publicationDate 2022-02-18
gptkbp:vulnerableTo Command Injection
gptkbp:bfsParent gptkb:MHCHAOS
gptkbp:bfsLayer 6