Lucene search
K

146680 matches found

Cvelist
Cvelist
added 2026/05/25 6:45 a.m.35 views

CVE-2026-9435 Totolink A8000RU Web Management cstecgi.cgi setQosCfg os command injection

A vulnerability was detected in Totolink A8000RU 7.1cu.643b20200521. The affected element is the function setQosCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument enable results in os command injection. Remote exploitation of...

10CVSS0.01909EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 6:45 a.m.22 views

CVE-2026-9435

The CVE affects Totolink A8000RU Web Management Interface (7.1cu.643_b20200521). The vulnerable element is the function setQosCfg in /cgi-bin/cstecgi.cgi; manipulating the enable argument enables an OS command injection. Remote exploitation is possible and the exploit is public. The vulnerability...

10CVSS7.1AI score0.01909EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/05/25 6:35 a.m.12 views

NEC Aterm series vulnerable to OS command injection (NV26-003)

Overview NEC Aterm series products provided by NEC Corporation contain the following vulnerability. OS command injection CWE-78 - CVE-2026-8652 So Kato of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

8.5CVSS5.8AI score0.00722EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/25 6:30 a.m.39 views

CVE-2026-9434 Totolink A8000RU Web Management cstecgi.cgi setWiFiWpsCfg os command injection

A security vulnerability has been detected in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setWiFiWpsCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument wscDisabled leads to os command injection. The attack may be...

10CVSS0.01732EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 6:30 a.m.8 views

CVE-2026-9434 Totolink A8000RU Web Management cstecgi.cgi setWiFiWpsCfg os command injection

A security vulnerability has been detected in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setWiFiWpsCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument wscDisabled leads to os command injection. The attack may be...

10CVSS5.6AI score0.01732EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 6:30 a.m.18 views

EUVD-2026-31640

A security vulnerability has been detected in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setWiFiWpsCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument wscDisabled leads to os command injection. The attack may be...

10CVSS5.6AI score0.01732EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 6:30 a.m.21 views

CVE-2026-9434

The CVE-2026-9434 issue affects Totolink A8000RU (Web Management Interface) version 7.1cu.643_b20200521, specifically the /cgi-bin/cstecgi.cgi file’s setWiFiWpsCfg function. The root cause is a manipulation of the wscDisabled argument that enables os command injection. This can be exploited remot...

10CVSS7AI score0.01732EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 6:15 a.m.37 views

CVE-2026-9433 Totolink A8000RU Web Management cstecgi.cgi setMacFilterRules os command injection

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument enable causes os command injection. The attack may be initiated...

10CVSS0.01732EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 6:15 a.m.11 views

CVE-2026-9433

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument enable causes os command injection. The attack may be initiated...

10CVSS7AI score0.01732EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/25 6:15 a.m.15 views

EUVD-2026-31641

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument enable causes os command injection. The attack may be initiated...

10CVSS5.6AI score0.01732EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 6:15 a.m.25 views

CVE-2026-9433

Totolink A8000RU Web Management (cstecgi.cgi, setMacFilterRules) is affected. The vulnerability allows os command injection via the enable argument in /cgi-bin/cstecgi.cgi, remotely exploitable on Totolink A8000RU 7.1cu.643_b20200521 Web Management Interface. CVSS metrics indicate critical impact...

10CVSS7AI score0.01732EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 6:15 a.m.10 views

CVE-2026-9433 Totolink A8000RU Web Management cstecgi.cgi setMacFilterRules os command injection

A weakness has been identified in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. This manipulation of the argument enable causes os command injection. The attack may be initiated...

10CVSS7AI score0.01732EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/25 6:0 a.m.38 views

CVE-2026-9432 Totolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setWiFiAdvancedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument bgProtection results in os command injection. The...

10CVSS0.01732EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/25 6:0 a.m.7 views

CVE-2026-9432 Totolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injection

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setWiFiAdvancedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument bgProtection results in os command injection. The...

10CVSS7AI score0.01732EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/25 6:0 a.m.11 views

CVE-2026-9432

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setWiFiAdvancedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument bgProtection results in os command injection. The...

10CVSS7AI score0.01732EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/05/25 6:0 a.m.26 views

CVE-2026-9432

The vulnerability CVE-2026-9432 affects Totolink A8000RU Web Management, specifically the /cgi-bin/cstecgi.cgi function setWiFiAdvancedCfg. The issue stems from manipulating the bgProtection argument, enabling OS command injection. Impact is remote, with high confidentiality, integrity, and avail...

10CVSS7AI score0.01732EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/25 6:0 a.m.12 views

EUVD-2026-31637

A security flaw has been discovered in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setWiFiAdvancedCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument bgProtection results in os command injection. The...

10CVSS5.6AI score0.01732EPSS
Exploits0References5
CVE
CVE
added 2026/05/25 5:28 a.m.26 views

CVE-2026-25193

CVE-2026-25193 affects Gallagher Command Centre Service installers. The issue is CWE-532: insertion of sensitive information into log files, which could expose service account credentials. Exploitation is described as a local attack vector with low complexity and requires user interaction per CVS...

8.1CVSS5.8AI score0.00132EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/25 5:28 a.m.8 views

CVE-2026-25193

Insertion of Sensitive Information into Log File CWE-532 in some Command Centre Service installers could lead to Service Account credentials exposure. Mitigating Factor: Only sites that install Command Centre Services with a custom Service Account not the default Network Service account are...

8.1CVSS5.8AI score0.00132EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/25 5:28 a.m.12 views

EUVD-2026-31636

Insertion of Sensitive Information into Log File CWE-532 in some Command Centre Service installers could lead to Service Account credentials exposure. Mitigating Factor: Only sites that install Command Centre Services with a custom Service Account not the default Network Service account are...

8.1CVSS5.8AI score0.00132EPSS
Exploits0References1
Rows per page
Query Builder