2 matches found
CVE-2022-37082
TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a command injection vulnerability via the hosttime parameter at the function NTPSyncWithHost...
CVE-2022-37082
CVE-2022-37082 affects TOTOLINK A7000R, specifically version 9.1.0u.6115_B20201022. The issue is a command injection via the host_time parameter in the NTPSyncWithHost function. The reported CVSS3.1 measurement indicates a Local attack with Low privileges and no user interaction, but High impact ...