3 matches found
CVE-2023-48810
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
CVE-2023-48810
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
CVE-2023-48810
CVE-2023-48810 affects TOTOLINK X6000R (V9.4.0cu.852_B20230719). The shttpd service’s sub_4119A0 uses front-end fields via Uci_Set_The_Str passed to CsteSystem, creating a command execution vulnerability. Public details in connected sources describe a remote command-injection risk with high impac...