2 matches found
CVE-2022-36459
TOTOLINK A3700R V9.1.2u.6134B20201202 was discovered to contain a command injection vulnerability via the hosttime parameter in the function NTPSyncWithHost...
CVE-2022-36459
CVE-2022-36459 affects TOTOLINK A3700R (v9.1.2u.6134_B20201202). The vulnerability is a command injection via the host_time parameter in the NTPSyncWithHost function. Public references indicate an in-device command execution path that could allow an attacker with local access to run arbitrary com...