The vulnerability of the setTelnetCfg() function in the /cgi-bin/cstecgi.cgi script of the telnet service in the mesh-system software TOTOLink T6 allows a hacker to bypass security restrictions and execute arbitrary code.

The vulnerability of the setTelnetCfg function in the /cgi-bin/cstecgi.cgi script of the telnet service in the mesh-system software TOTOLink T6 is related to deficiencies in the authentication process when processing the telnetEnabled parameter. Exploiting this vulnerability allows a malicious...

The vulnerability of the setTracerouteCfg() function in the cstecgi.cgi script of the mesh-system TOTOLink T6 software allows a intruder to execute arbitrary code.

The vulnerability of the setTracerouteCfg function in the cstecgi.cgi script of the mesh-system TOTOLink T6 software is related to the failure to eliminate special elements during the processing of the command parameter. Exploiting this vulnerability allows a malicious actor to execute arbitrary...

The vulnerability of the setSSServer() function in the cstecgi.cgi script of the TOTOLINK X5000R router’s microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the setSSServer function in the cstecgi.cgi script of the TOTOLINK X5000R router’s software is related to the lack of measures to sanitize input data when processing parameters such as password, port, and timeout. Exploiting this vulnerability could allow an attacker to execu...