CVE-2019-19824 — HIGH (8.8)

Q: How severe is CVE-2019-19824?

CVE-2019-19824 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-19824?

Check the references section above for vendor advisories and patch information. Affected products include: Totolink A3002Ru Firmware, Totolink A3002Ru, Totolink A702R Firmware, Totolink A702R, Totolink N301Rt Firmware.

Vulnerability Description

On certain TOTOLINK Realtek SDK based routers, an authenticated attacker may execute arbitrary OS commands via the sysCmd parameter to the boafrm/formSysCmd URI, even if the GUI (syscmd.htm) is not available. This allows for full control over the device's internals. This affects A3002RU through 2.0.0, A702R through 2.1.3, N301RT through 2.1.6, N302R through 3.4.0, N300RT through 3.4.0, N200RE through 4.0.0, N150RT through 3.4.0, N100RE through 3.4.0, and N302RE 2.0.2.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Totolink	A3002Ru Firmware	<= 2.0.0
Totolink	A3002Ru	-
Totolink	A702R Firmware	<= 2.1.3
Totolink	A702R	-
Totolink	N301Rt Firmware	<= 2.1.6
Totolink	N301Rt	-
Totolink	N302R Firmware	<= 3.4.0
Totolink	N302R	-
Totolink	N300Rt Firmware	<= 3.4.0
Totolink	N300Rt	-
Totolink	N200Re Firmware	<= 4.0.0
Totolink	N200Re	-
Totolink	N150Rt Firmware	<= 3.4.0
Totolink	N150Rt	-
Totolink	N100Re Firmware	<= 3.4.0
Totolink	N100Re	-

Related Weaknesses (CWE)

CWE-78

References

http://packetstormsecurity.com/files/156083/Realtek-SDK-Information-Disclosure-CExploitThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2020/Jan/36ExploitMailing ListThird Party Advisory
http://seclists.org/fulldisclosure/2020/Jan/38ExploitMailing ListThird Party Advisory
https://github.com/yckuo-sdc/totolink-boa-api-vulnerabilities
https://sploit.techExploitThird Party Advisory
http://packetstormsecurity.com/files/156083/Realtek-SDK-Information-Disclosure-CExploitThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2020/Jan/36ExploitMailing ListThird Party Advisory
http://seclists.org/fulldisclosure/2020/Jan/38ExploitMailing ListThird Party Advisory
https://sploit.techExploitThird Party Advisory

FAQ

What is CVE-2019-19824?

CVE-2019-19824 is a vulnerability with a CVSS score of 8.8 (HIGH). On certain TOTOLINK Realtek SDK based routers, an authenticated attacker may execute arbitrary OS commands via the sysCmd parameter to the boafrm/formSysCmd URI, even if the GUI (syscmd.htm) is not av...

How severe is CVE-2019-19824?

CVE-2019-19824 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-19824?

Check the references section above for vendor advisories and patch information. Affected products include: Totolink A3002Ru Firmware, Totolink A3002Ru, Totolink A702R Firmware, Totolink A702R, Totolink N301Rt Firmware.