TOTOLINK A7100RU Router Command Injection (CVE-2022-28575; CVE-2022-28577; CVE-2022-28578; CVE-2022-28579; CVE-2022-28580; CVE-2022-28581; CVE-2022-28582; CVE-2022-28583; CVE-2022-28584)

A command injection vulnerability exists in TOTOLINK A7100RU router. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

CVE-2022-28582

creationtimestamp| type| source ---|---|--- 2022-05-05 22:36:46+00:00| seen| https://t.me/cibsecurity/42048...

CVE-2022-28582

It is found that there is a command injection vulnerability in the setWiFiSignalCfg interface in TOTOlink A7100RU v7.4cu.2313b20191024 router, which allows an attacker to execute arbitrary commands through a carefully constructed payload...

CVE-2022-28582

CVE-2022-28582 affects TOTOLINK A7100RU devices (firmware 7.4cu.2313_b20191024). The setWiFiSignalCfg interface exposes a command-injection flaw that enables arbitrary command execution, with network-based access and no privileges required per the CVSS data (score up to 9.8). Public documents con...

CVE-2022-28582

It is found that there is a command injection vulnerability in the setWiFiSignalCfg interface in TOTOlink A7100RU v7.4cu.2313b20191024 router, which allows an attacker to execute arbitrary commands through a carefully constructed payload...