3 matches found
CVE-2023-39617
TOTOLINK X5000RV9.1.0cu.2089B20211224 and X5000RV9.1.0cu.2350B20230313 were discovered to contain a remote code execution RCE vulnerability via the lang parameter in the setLanguageCfg function...
CVE-2023-39617
TOTOLINK X5000RV9.1.0cu.2089B20211224 and X5000RV9.1.0cu.2350B20230313 were discovered to contain a remote code execution RCE vulnerability via the lang parameter in the setLanguageCfg function...
CVE-2023-39617
CVE-2023-39617 affects TOTOLINK X5000R: versions V9.1.0cu.2089_B20211224 through V9.1.0cu.2350_B20230313 are vulnerable to remote code execution via the lang parameter in the setLanguageCfg function. Root cause described as failure to properly filter elements in the constructed snippet, enabling ...