4 matches found
VulnCheck KEV: CVE-2022-25134
A command injection vulnerability in the function setUpgradeFW of TOTOLINK Technology router T6 V3Firmware T6V3V4.1.5cu.748B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet...
CVE-2022-25134
creationtimestamp| type| source ---|---|--- 2022-02-19 02:38:33+00:00| seen| https://t.me/cibsecurity/37803...
CVE-2022-25134
A command injection vulnerability in the function setUpgradeFW of TOTOLINK Technology router T6 V3Firmware T6V3V4.1.5cu.748B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet...
CVE-2022-25134
The CVE-2022-25134 entry details a command injection vulnerability in the TOTOLINK T6 router. The flaw exists in the function setUpgradeFW of the T6_V3 firmware (V3_Firmware T6_V3_V4.1.5cu.748_B20211015). An attacker can trigger the vulnerability by sending a crafted MQTT packet , enabling arbitr...