3 matches found
CVE-2023-29800
TOTOLINK X18 V9.1.0cu.2024B20220329 was discovered to contain a command injection vulnerability via the FileName parameter in the UploadFirmwareFile function...
CVE-2023-29800
CVE-2023-29800 affects TOTOLINK X18, firmware version V9.1.0cu.2024_B20220329. The vulnerability is a command injection in the UploadFirmwareFile function triggered via the FileName parameter, caused by insufficient input validation. Reported CVSS v3.1 base score 9.8 (CRITICAL) with network attac...
CVE-2023-29800
TOTOLINK X18 V9.1.0cu.2024B20220329 was discovered to contain a command injection vulnerability via the FileName parameter in the UploadFirmwareFile function...