Lucene search
+L

836 matches found

nvd
nvd
added 2026/05/25 11:16 p.m.16 views

CVE-2026-9513

A weakness has been identified in Totolink CA750-PoE 6.2c.510. This issue affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument hosttime can lead to os command injection. The attack can be launched remotely...

6.5CVSS0.01057EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2026/05/25 11:15 p.m.10 views

CVE-2026-9515 Totolink CA750-PoE Setting cstecgi.cgi setUnloadUserData os command injection

A vulnerability was detected in Totolink CA750-PoE 6.2c.510. The affected element is the function setUnloadUserData of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation of the argument pluginversion results in os command injection. The attack may be launched remotel...

6.5CVSS6.4AI score0.01803EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2026/05/25 10:45 p.m.8 views

CVE-2026-9514 Totolink CA750-PoE Setting cstecgi.cgi setNetworkDiag os command injection

A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. Impacted is the function setNetworkDiag of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation of the argument NetDiagHost/NetDiagPingNum/NetDiagPingSize/NetDiagPingTimeOut/NetDiagTracertHop is...

6.5CVSS6.4AI score0.01803EPSS
Exploits0References5
euvd
euvd
added 2026/05/25 10:45 p.m.17 views

EUVD-2026-31752

A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. Impacted is the function setNetworkDiag of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation of the argument NetDiagHost/NetDiagPingNum/NetDiagPingSize/NetDiagPingTimeOut/NetDiagTracertHop is...

6.5CVSS6.4AI score0.01803EPSS
Exploits0References5
cvelist
cvelist
added 2026/05/25 10:45 p.m.36 views

CVE-2026-9514 Totolink CA750-PoE Setting cstecgi.cgi setNetworkDiag os command injection

A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. Impacted is the function setNetworkDiag of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation of the argument NetDiagHost/NetDiagPingNum/NetDiagPingSize/NetDiagPingTimeOut/NetDiagTracertHop is...

6.5CVSS0.01803EPSS
Exploits0References5
euvd
euvd
added 2026/05/25 10:30 p.m.18 views

EUVD-2026-31768

A weakness has been identified in Totolink CA750-PoE 6.2c.510. This issue affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument hosttime can lead to os command injection. The attack can be launched remotely...

6.5CVSS6.4AI score0.01057EPSS
Exploits0References5
cve
cve
added 2026/05/25 10:30 p.m.28 views

CVE-2026-9513

Totolink CA750-PoE 6.2c.510 is affected by CVE-2026-9513 in the NTPSyncWithHost path /cgi-bin/cstecgi.cgi (Setting Handler). The vulnerability stems from improper handling of the host_time argument, enabling os command injection with remote access. The issue affects the specific function NTPSyncW...

6.5CVSS6.4AI score0.01057EPSS
Exploits0References5
nvd
nvd
added 2026/05/25 10:16 p.m.14 views

CVE-2026-9511

A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argument webWlanIdx leads to os command injection. It is possible to launch the attack remotely. The...

6.5CVSS0.01057EPSS
Exploits0References5
euvd
euvd
added 2026/05/25 10:15 p.m.13 views

EUVD-2026-31762

A security flaw has been discovered in Totolink CA750-PoE 6.2c.510. This vulnerability affects the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Performing a manipulation of the argument admuser/admpass results in os command injection. The attack can b...

6.5CVSS6.4AI score0.01057EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2026/05/25 10:0 p.m.9 views

CVE-2026-9511 Totolink CA750-PoE Setting cstecgi.cgi setWebWlanIdx os command injection

A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argument webWlanIdx leads to os command injection. It is possible to launch the attack remotely. The...

6.5CVSS6.4AI score0.01057EPSS
Exploits0References5
cve
cve
added 2026/05/25 10:0 p.m.27 views

CVE-2026-9511

The CVE-2026-9511 entry concerns Totolink CA750-PoE (firmware 6.2c.510) with a vulnerability in the Setting Handler: file /cgi-bin/cstecgi.cgi, function setWebWlanIdx. Recasting the webWlanIdx parameter allows an os command injection, with remote exploitation possible. Public exploit access is in...

6.5CVSS6.4AI score0.01057EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/05/25 5:30 p.m.13 views

CVE-2026-9478

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setParentalRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument enable can lead to os command injection. The attack may be performe...

10CVSS5.5AI score0.01909EPSS
Exploits0References5Affected Software1
euvd
euvd
added 2026/05/25 5:15 p.m.14 views

EUVD-2026-31710

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS7AI score0.01909EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/05/25 5:15 p.m.19 views

CVE-2026-9477

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS5.6AI score0.01909EPSS
Exploits0References5Affected Software1
cve
cve
added 2026/05/25 5:0 p.m.24 views

CVE-2026-9476

Totolink A8000RU Web Management (firmware 7.1cu.643_b20200521) is affected via the /cgi-bin/cstecgi.cgi function setPasswordCfg. Manipulating the admpass parameter enables remote command injection, compromising confidentiality, integrity, and availability. Publicly available exploit exists, indic...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/05/25 4:45 p.m.15 views

CVE-2026-9475

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. This affects the function setIpQosRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument Comment causes os command injection. Remote exploitation of the attack is...

10CVSS7AI score0.01909EPSS
Exploits0References5Affected Software1
nvd
nvd
added 2026/05/25 1:16 p.m.19 views

CVE-2026-9456

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enabled results in os command injection. The attack can be executed remotely. The...

10CVSS0.01909EPSS
Exploits0References5
euvd
euvd
added 2026/05/25 12:30 p.m.12 views

EUVD-2026-31678

A vulnerability was identified in Totolink A8000RU 7.1cu.643b20200521. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument enabled leads to os command injection. The attack may be performed fr...

10CVSS7.1AI score0.02094EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/05/25 12:15 p.m.10 views

CVE-2026-9457

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument FileName causes os command injection. The attack is possible...

10CVSS7AI score0.02094EPSS
Exploits0References5Affected Software1
euvd
euvd
added 2026/05/25 12:15 p.m.14 views

EUVD-2026-31677

A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function UploadFirmwareFile of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument FileName causes os command injection. The attack is possible...

10CVSS7AI score0.02094EPSS
Exploits0References5
Rows per page
Query Builder