2 matches found
CVE-2022-25133
A command injection vulnerability in the function isAssocPriDevice of TOTOLINK Technology router T6 V3Firmware T6V3V4.1.5cu.748B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet...
CVE-2022-25133
The CVE-2022-25133 entry concerns TOTOLINK T6 routers, specifically the isAssocPriDevice function in firmware T6_V3_V4.1.5cu.748_B20211015. A vulnerability allows an attacker to execute arbitrary commands by sending a crafted MQTT packet, i.e., a command-injection in the isAssocPriDevice path. Re...