4 matches found
CVE-2022-26213
Totolink X5000RFirmware v9.1.0u.6118B20201102 was discovered to contain a command injection vulnerability in the function setNtpCfg, via the tz parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
TOTOLINK X5000R Command Injection (CVE-2022-26213)
A command injection vulnerability exists in TOTOLINK X5000R. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2022-26213
creationtimestamp| type| source ---|---|--- 2022-03-16 01:20:00+00:00| seen| https://t.me/cibsecurity/38989...
CVE-2022-26213
Totolink X5000R firmware version 9.1.0u.6118_B20201102 contains a command injection in setNtpCfg exploited via the tz parameter. A crafted request can lead to arbitrary command execution on the device. Public details across multiple sources describe this vulnerability as affecting the affected fi...