4 matches found
CVE-2022-28491
TOTOLink outdoor CPE CP900 V6.3c.566B20171026 contains a command injection vulnerability in the NTPSyncWithHost function via the hostname parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2022-28491
creationtimestamp| type| source ---|---|--- 2023-03-23 17:41:37+00:00| seen| https://t.me/cibsecurity/60566...
CVE-2022-28491
TOTOLink outdoor CPE CP900 V6.3c.566B20171026 contains a command injection vulnerability in the NTPSyncWithHost function via the hostname parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2022-28491
The CVE-2022-28491 issue affects TOTOLink outdoor CPE CP900 (V6.3c.566_B20171026). It is a command injection vulnerability in the NTPSyncWithHost function via the host_name parameter, allowing an attacker to execute arbitrary commands through a crafted request. CVSS 3.1 base score is 9.8 (CRITICA...