CVE-2023-33553

CRITICAL

Planet Technologies WDRT-1800AX v1.01-CP21 - Privilege Escalation

Title source: llm

Description

An issue in Planet Technologies WDRT-1800AX v1.01-CP21 allows attackers to bypass authentication and escalate privileges to root via manipulation of the LoginStatus cookie.

References (2)

Core 2

Core References

Exploit, Third Party Advisory

https://github.com/0xfml/poc/blob/main/PLANET/WDRT-1800AX.md

View Exploit ZIP pw:eip

Product

https://www.planet.com.tw/en/product/wdrt-1800ax

Scores

CVSS v3 9.8

EPSS 0.0005

EPSS Percentile 14.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-287 CWE-306

Status published

Products (1)

planet/wdrt-1800ax_firmware 1.01-cp21

Published Jun 07, 2023

Tracked Since Feb 18, 2026