3 matches found
CVE-2023-24150
creationtimestamp| type| source ---|---|--- 2023-02-03 18:20:50+00:00| seen| https://t.me/cibsecurity/57457...
CVE-2023-24150
A command injection vulnerability in the serverIp parameter in the function meshSlaveDlfw of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet...
CVE-2023-24150
CVE-2023-24150 affects TOTOLINK T8 (V4.1.5cu) via the serverIp parameter in the meshSlaveDlfw function. The vulnerability enables remote command execution by processing a crafted MQTT packet, due to the underlying command injection flaw. The CVSS 3.1 base score is 9.8 (CRITICAL); attack vector NE...