What is CVE-2023-31742?

CVE-2023-31742 is a vulnerability in N/a. Published 2023-05-22.

Is CVE-2023-31742 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2023-31742

There is a command injection vulnerability in the Linksys WRT54GL router with firmware version 4.30.18.006. If an attacker gains web management privileges, they can inject commands into the post request parameters wl_ant, wl_rate, WL_atten…

EPSS: 0.738 (98.8th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework
attilaszia/linux-iot-cves

References

linksys.com
github.com/D2y6p/CVE/blob/main/Linksys/CVE-2023-31742/Linksys_WRT54GL_RCE.pdf

Frequently asked questions

What is CVE-2023-31742?: CVE-2023-31742 is a vulnerability in N/a. Published 2023-05-22.
Is CVE-2023-31742 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.