3 matches found
CVE-2022-37843
In TOTOLINK A860R V4.1.2cu.5182B20201027 in cstecgi.cgi, the acquired parameters are directly put into the system for execution without filtering, resulting in a command injection vulnerability...
CVE-2022-37843
In TOTOLINK A860R V4.1.2cu.5182B20201027 in cstecgi.cgi, the acquired parameters are directly put into the system for execution without filtering, resulting in a command injection vulnerability...
CVE-2022-37843
CVE-2022-37843 affects TOTOLINK A860R with firmware 4.1.2cu.5182_B20201027, where cstecgi.cgi executes acquired parameters directly without filtering, enabling command injection. Root cause: unfiltered parameter handling leading to code execution. Documented impact values indicate high confidenti...