Lucene search
K

1005 matches found

NVD
NVD
added 2026/05/25 5:16 p.m.17 views

CVE-2026-9476

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS0.01909EPSS
Exploits0References5
NVD
NVD
added 2026/05/25 5:16 p.m.22 views

CVE-2026-9475

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This affects the function setIpQosRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument Comment causes os command injection. Remote exploitation of the attack is...

10CVSS0.01909EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 5:15 p.m.25 views

CVE-2026-9477 Totolink A8000RU Web Management cstecgi.cgi setAccessDeviceCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS0.01909EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 5:15 p.m.29 views

CVE-2026-9477

CVE-2026-9477 affects Totolink A8000RU Web Management Interface. The vulnerability lies in the /cgi-bin/cstecgi.cgi setAccessDeviceCfg function where manipulating the mac argument enables OS command injection. It can be exploited remotely with no privileges or user interaction. Public exploit inf...

10CVSS7AI score0.01909EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 5:15 p.m.9 views

CVE-2026-9477 Totolink A8000RU Web Management cstecgi.cgi setAccessDeviceCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS7AI score0.01909EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 5:0 p.m.13 views

EUVD-2026-31709

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 5:0 p.m.9 views

CVE-2026-9476 Totolink A8000RU Web Management cstecgi.cgi setPasswordCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
NVD
NVD
added 2026/05/25 2:16 p.m.13 views

CVE-2026-9458

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS0.02094EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 12:30 p.m.35 views

CVE-2026-9458 Totolink A8000RU Web Management cstecgi.cgi setWanCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS0.02094EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 12:30 p.m.9 views

CVE-2026-9458 Totolink A8000RU Web Management cstecgi.cgi setWanCfg os command injection

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS7.1AI score0.02094EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 12:15 p.m.10 views

CVE-2026-9457 Totolink A8000RU Web Management cstecgi.cgi UploadFirmwareFile os command injection

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument FileName causes os command injection. The attack is possible...

10CVSS7AI score0.02094EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 12:15 p.m.22 views

CVE-2026-9457

CVE-2026-9457 affects Totolink A8000RU Web Management interface (file /cgi-bin/cstecgi.cgi, function UploadFirmwareFile). The vulnerability arises from manipulating the FileName argument, leading to os command injection. It can be exploited remotely without authentication, as indicated by the des...

10CVSS7AI score0.02094EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 12:0 p.m.9 views

CVE-2026-9456 Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCfg os command injection

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enabled results in os command injection. The attack can be executed remotely. The...

10CVSS7AI score0.01909EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 11:30 a.m.12 views

CVE-2026-9454

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setOpenVpnCertGenerationCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument servername can lead to os command injection. The...

10CVSS7AI score0.01909EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/05/25 11:30 a.m.25 views

CVE-2026-9454

The CVE concerns Totolink A8000RU Web Management (version 7.1cu.643_b20200521). The vulnerable component is the function setOpenVpnCertGenerationCfg in /cgi-bin/cstecgi.cgi. The root cause is a manipulation of the argument servername that leads to an OS command injection. The issue appears to be ...

10CVSS7AI score0.01909EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 11:30 a.m.40 views

CVE-2026-9454 Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCertGenerationCfg os command injection

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setOpenVpnCertGenerationCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument servername can lead to os command injection. The...

10CVSS0.01909EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 7:0 a.m.24 views

CVE-2026-9436

Totolink A8000RU Web Management (cgi-bin/cstecgi.cgi, function setL2tpServerCfg) is affected by an os command injection when manipulating the enable argument. The flaw is exploitable remotely and has an exploit published. Impact concerns high confidentiality, integrity, and availability per CVSS,...

10CVSS7AI score0.02005EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/25 7:0 a.m.11 views

CVE-2026-9436 Totolink A8000RU Web Management cstecgi.cgi setL2tpServerCfg os command injection

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setL2tpServerCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack can be...

10CVSS7AI score0.02005EPSS
Exploits0References6
CVE
CVE
added 2026/05/25 6:45 a.m.24 views

CVE-2026-9435

The CVE affects Totolink A8000RU Web Management Interface (7.1cu.643_b20200521). The vulnerable element is the function setQosCfg in /cgi-bin/cstecgi.cgi; manipulating the enable argument enables an OS command injection. Remote exploitation is possible and the exploit is public. The vulnerability...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 6:45 a.m.9 views

CVE-2026-9435 Totolink A8000RU Web Management cstecgi.cgi setQosCfg os command injection

A vulnerability was detected in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setQosCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument enable results in os command injection. Remote exploitation of...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
Rows per page
Query Builder