4 matches found
CVE-2023-48803
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
CVE-2023-48803
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
CVE-2023-48803
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
CVE-2023-48803
CVE-2023-48803 affects TOTOLINK X6000R V9.4.0cu.852_B20230719. The shttpd component’s sub_4119A0 routine obtains fields from the front-end via Uci_Set_The_Str and passes them to CsteSystem, enabling command execution on the device. CVSS v3.1 metrics indicate network access, no privileges, no user...