3 matches found
CVE-2023-48805
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
CVE-2023-48805
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
CVE-2023-48805
CVE-2023-48805 affects TOTOLINK X6000R 9.4.0cu.852_B20230719. The vulnerability resides in the shttpd component: the sub_4119A0 function obtains fields from the front-end via the Uci_Set_ The_Str path, and when these are passed to CsteSystem, it enables command execution. External access could le...