3 matches found
CVE-2025-14586
creationtimestamp| type| source ---|---|--- 2025-12-13 11:34:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7uj475m2u2x 2026-02-05 21:02:54+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3me5bzfmmmp2h...
CVE-2025-14586 TOTOLINK X5000R cstecgi.cgi snprintf os command injection
A vulnerability was determined in TOTOLINK X5000R 9.1.0cu.2089B20211224. Affected by this issue is the function snprintf of the file /cgi-bin/cstecgi.cgi?action=exportOvpn&type=user. This manipulation of the argument User causes os command injection. Remote exploitation of the attack is possible...
CVE-2025-14586
CVE-2025-14586 affects TOTOLINK X5000R 9.1.0cu.2089_B20211224. The vulnerability is in snprintf in /cgi-bin/cstecgi.cgi?action=exportOvpn&type=user, where manipulation of the User argument leads to an OS command injection. Remote exploitation is possible and has been publicly disclosed. Connected...