3 matches found
CVE-2023-46993
In TOTOLINK A3300R V17.0.0cu.557B20221024 when dealing with setLedCfg request, there is no verification for the enable parameter, which can lead to command injection...
CVE-2023-46993
In TOTOLINK A3300R V17.0.0cu.557B20221024 when dealing with setLedCfg request, there is no verification for the enable parameter, which can lead to command injection...
CVE-2023-46993
The CVE-2023-46993 entry applies to TOTOLINK A3300R, specifically v17.0.0cu.557_B20221024, where the setLedCfg handler does not validate the enable parameter, enabling potential command injection. The issue is documented across multiple sources (NVD, CNVD/CNNVD, Red Hat, CVE listing, PT Security)...