Lucene search
K

146633 matches found

Cvelist
Cvelist
added 2026/05/25 6:15 a.m.37 views

CVE-2026-9433 Totolink A8000RU Web Management cstecgi.cgi setMacFilterRules os command injection

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument enable causes os command injection. The attack may be initiated...

10CVSS0.01732EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 6:15 a.m.11 views

CVE-2026-9433

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument enable causes os command injection. The attack may be initiated...

10CVSS7AI score0.01732EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/25 6:15 a.m.10 views

CVE-2026-9433 Totolink A8000RU Web Management cstecgi.cgi setMacFilterRules os command injection

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument enable causes os command injection. The attack may be initiated...

10CVSS7AI score0.01732EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 6:15 a.m.15 views

EUVD-2026-31641

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument enable causes os command injection. The attack may be initiated...

10CVSS5.6AI score0.01732EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 6:15 a.m.25 views

CVE-2026-9433

Totolink A8000RU Web Management (cstecgi.cgi, setMacFilterRules) is affected. The vulnerability allows os command injection via the enable argument in /cgi-bin/cstecgi.cgi, remotely exploitable on Totolink A8000RU 7.1cu.643_b20200521 Web Management Interface. CVSS metrics indicate critical impact...

10CVSS7AI score0.01732EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 6:0 a.m.11 views

EUVD-2026-31637

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setWiFiAdvancedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument bgProtection results in os command injection. The...

10CVSS5.6AI score0.01732EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 6:0 a.m.38 views

CVE-2026-9432 Totolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setWiFiAdvancedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument bgProtection results in os command injection. The...

10CVSS0.01732EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 6:0 a.m.7 views

CVE-2026-9432 Totolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setWiFiAdvancedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument bgProtection results in os command injection. The...

10CVSS7AI score0.01732EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 6:0 a.m.11 views

CVE-2026-9432

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setWiFiAdvancedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument bgProtection results in os command injection. The...

10CVSS7AI score0.01732EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/05/25 6:0 a.m.25 views

CVE-2026-9432

The vulnerability CVE-2026-9432 affects Totolink A8000RU Web Management, specifically the /cgi-bin/cstecgi.cgi function setWiFiAdvancedCfg. The issue stems from manipulating the bgProtection argument, enabling OS command injection. Impact is remote, with high confidentiality, integrity, and avail...

10CVSS7AI score0.01732EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 5:28 a.m.8 views

CVE-2026-25193

Insertion of Sensitive Information into Log File CWE-532 in some Command Centre Service installers could lead to Service Account credentials exposure. Mitigating Factor: Only sites that install Command Centre Services with a custom Service Account not the default Network Service account are...

8.1CVSS5.8AI score0.00132EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/25 5:28 a.m.12 views

EUVD-2026-31636

Insertion of Sensitive Information into Log File CWE-532 in some Command Centre Service installers could lead to Service Account credentials exposure. Mitigating Factor: Only sites that install Command Centre Services with a custom Service Account not the default Network Service account are...

8.1CVSS5.8AI score0.00132EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/25 5:28 a.m.7 views

CVE-2026-25193

Insertion of Sensitive Information into Log File CWE-532 in some Command Centre Service installers could lead to Service Account credentials exposure. Mitigating Factor: Only sites that install Command Centre Services with a custom Service Account not the default Network Service account are...

8.1CVSS5.8AI score0.00132EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2026/05/25 5:28 a.m.38 views

CVE-2026-25193

Insertion of Sensitive Information into Log File CWE-532 in some Command Centre Service installers could lead to Service Account credentials exposure. Mitigating Factor: Only sites that install Command Centre Services with a custom Service Account not the default Network Service account are...

8.1CVSS0.00132EPSS
Exploits0References1
CVE
CVE
added 2026/05/25 5:28 a.m.26 views

CVE-2026-25193

CVE-2026-25193 affects Gallagher Command Centre Service installers. The issue is CWE-532: insertion of sensitive information into log files, which could expose service account credentials. Exploitation is described as a local attack vector with low complexity and requires user interaction per CVS...

8.1CVSS5.8AI score0.00132EPSS
Exploits0References1
NVD
NVD
added 2026/05/25 5:16 a.m.11 views

CVE-2026-9424

A weakness has been identified in Edimax EW-7438RPn 1.31. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component Content-Type Handler. Executing a manipulation of the argument...

6.5CVSS0.01158EPSS
Exploits0References4
NVD
NVD
added 2026/05/25 5:16 a.m.11 views

CVE-2026-9423

A security flaw has been discovered in Edimax BR-6675nD 1.12. Impacted is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulation of the argument command results in command injection. The attack may be initiated remotely. The exploit has been releas...

5.8CVSS0.02077EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/25 4:0 a.m.41 views

CVE-2026-9424 Edimax EW-7438RPn Content-Type formWlanMP os command injection

A weakness has been identified in Edimax EW-7438RPn 1.31. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component Content-Type Handler. Executing a manipulation of the argument...

6.5CVSS0.01158EPSS
Exploits0References4
CVE
CVE
added 2026/05/25 4:0 a.m.18 views

CVE-2026-9424

The vulnerability CVE-2026-9424 affects Edimax EW-7438RPn firmware 1.31, in the Content-Type Handler’s formWlanMP function (/goform/formWlanMP). It allows an attacker to manipulate a wide set of parameters (ateFunc, ateGain, ateTxCount, ateChan, ateRate, ateMacID, e2pTxPower*, ateTxFreqOffset, at...

6.5CVSS6.3AI score0.01158EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/25 4:0 a.m.12 views

EUVD-2026-31628

A weakness has been identified in Edimax EW-7438RPn 1.31. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component Content-Type Handler. Executing a manipulation of the argument...

6.5CVSS6.3AI score0.01158EPSS
Exploits0References4
Rows per page
Query Builder