2 matches found
CVE-2022-36486
TOTOLINK N350RT V9.3.5u.6139B20201216 was discovered to contain a command injection vulnerability via the FileName parameter in the function UploadFirmwareFile...
CVE-2022-36486
CVE-2022-36486 affects TOTOLINK N350RT with firmware 9.3.5u.6139_B20201216. The flaw is a command injection via the FileName parameter in UploadFirmwareFile. According to NVD, the vulnerability is locally exploitable with low privileges, no user interaction, and impacts all three CIA metrics (hig...