3 matches found
CVE-2022-28495
TOTOLink outdoor CPE CP900 V6.3c.566B20171026 is discovered to contain a command injection vulnerability in the setWebWlanIdx function via the webWlanIdx parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2022-28495
TOTOLink outdoor CPE CP900 V6.3c.566B20171026 is discovered to contain a command injection vulnerability in the setWebWlanIdx function via the webWlanIdx parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2022-28495
The CVE-2022-28495 vulnerability affects TOTOLink outdoor CPE CP900, version 6.3c.566_B20171026, where the setWebWlanIdx function is exploitable via the webWlanIdx parameter to achieve command injection. This can allow an attacker to execute arbitrary commands, over a network attack vector with n...