Vulnerability Description
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting (XSS) vulnerability in Access Control under the Wireless Page.
CVSS Score
5.4
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Totolink | N300Rt Firmware | 2.1.8-b20201030.1539 |
| Totolink | N300Rt | - |
Related Weaknesses (CWE)
References
- https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/N300RT/XSS_2_Access_ContrExploitThird Party Advisory
- https://www.totolink.net/home/menu/newstpl/menu_newstpl/products/id/154.htmlProduct
- https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/N300RT/XSS_2_Access_ContrExploitThird Party Advisory
- https://www.totolink.net/home/menu/newstpl/menu_newstpl/products/id/154.htmlProduct
FAQ
What is CVE-2024-32335?
CVE-2024-32335 is a vulnerability with a CVSS score of 5.4 (MEDIUM). TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting (XSS) vulnerability in Access Control under the Wireless Page.
How severe is CVE-2024-32335?
CVE-2024-32335 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-32335?
Check the references section above for vendor advisories and patch information. Affected products include: Totolink N300Rt Firmware, Totolink N300Rt.