49 matches found
TOTOLINK A3600R setNoticeCfg function command injection vulnerability
TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. A command injection vulnerability exists in TOTOLINK A3600R version 4.1.2cu.5182B20201102. The vulnerability stems from the failure of the function setNoticeCfg in the file /cgi-bin/cstecgi.cgi in the...
CVE-2026-5020
A vulnerability was detected in Totolink A3600R 4.1.2cu.5182B20201102. Affected by this issue is the function setNoticeCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument NoticeUrl results in command injection. The attack may be launched...
CVE-2026-5020
A vulnerability was detected in Totolink A3600R 4.1.2cu.5182B20201102. Affected by this issue is the function setNoticeCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument NoticeUrl results in command injection. The attack may be launched...
CVE-2026-5020 Totolink A3600R Parameter cstecgi.cgi setNoticeCfg command injection
A vulnerability was detected in Totolink A3600R 4.1.2cu.5182B20201102. Affected by this issue is the function setNoticeCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument NoticeUrl results in command injection. The attack may be launched...
CVE-2026-5020
Summary: CVE-2026-5020 affects Totolink A3600R (v4.1.2cu.5182_B20201102). The vulnerability is in the Parameter Handler’s setNoticeCfg function (file /cgi-bin/cstecgi.cgi). Manipulating the NoticeUrl argument allows arbitrary command execution via a remote attacker, with exploit publicly availabl...
CVE-2026-5020 Totolink A3600R Parameter cstecgi.cgi setNoticeCfg command injection
A vulnerability was detected in Totolink A3600R 4.1.2cu.5182B20201102. Affected by this issue is the function setNoticeCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument NoticeUrl results in command injection. The attack may be launched...
CVE-2026-5020
A vulnerability was detected in Totolink A3600R 4.1.2cu.5182B20201102. Affected by this issue is the function setNoticeCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument NoticeUrl results in command injection. The attack may be launched...
TOTOLINK A3600R 命令注入漏洞
TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. A command injection vulnerability exists in TOTOLINK A3600R version 4.1.2cu.5182B20201102. The vulnerability stems from the failure of the function setNoticeCfg in the file /cgi-bin/cstecgi.cgi in the...
EUVD-2025-12208
Malicious code in bioql PyPI...
EUVD-2025-14035
Malicious code in bioql PyPI...
EUVD-2025-12207
Malicious code in bioql PyPI...
EUVD-2025-8646
Malicious code in bioql PyPI...
VulnCheck KEV: CVE-2025-28036
TOTOLINK A950RG V4.1.2cu.5161B20200903 was found to contain a pre-auth remote command execution vulnerability in the setNoticeCfg function through the NoticeUrl parameter...
CVE-2025-45797
TOTOlink A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of /lib/cstemodules/system.so...
CVE-2025-45797
TOTOlink A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of /lib/cstemodules/system.so...
CVE-2025-45797
CVE-2025-45797 affects TOTOLINK A950RG (V4.1.2cu.5204_B20210112). The vulnerability is a buffer overflow in the setNoticeCfg interface’s NoticeUrl parameter validation within /lib/cste_modules/system.so, due to improper input length handling. Public sources describe potential arbitrary code execu...
TOTOLINK A950RG 安全漏洞
The TOTOLINK A950RG is an ultra-generation Giga wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A950RG suffers from a buffer overflow vulnerability that originates from the failure of the setNoticeCfg interface NoticeUrl parameter in /lib/cstemodules/system.so to correctly...
CVE-2025-45797
TOTOlink A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of /lib/cstemodules/system.so...
CVE-2025-45797
TOTOlink A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of /lib/cstemodules/system.so...
TOTOLINK A950RG NoticeUrl Parameter Arbitrary Command Execution Vulnerability
TOTOLINK A950RG is a gaming router and smart router that supports 2.4GHz and 5GHz dual band. The TOTOLINK A950RG suffers from a command execution vulnerability that originates from the NoticeUrl parameter in the setNoticeCfg function, which can be exploited by an attacker to execute arbitrary...