3 matches found
CVE-2024-0292
A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostName leads to os command injection. It is possible to launch the attack remotely. The explo...
CVE-2024-0292
creationtimestamp| type| source ---|---|--- 2024-01-08 03:31:45+00:00| seen| https://t.me/ctinow/164186 2024-01-11 19:31:54+00:00| seen| https://t.me/ctinow/166755 2024-01-25 08:41:27+00:00| seen| https://t.me/ctinow/173324 2025-07-15 21:02:21+00:00| seen|...
CVE-2024-0292
CVE-2024-0292 affects Totolink LR1200GB (9.1.0u.6619_B20230130). The vulnerability exists in the setOpModeCfg function of /cgi-bin/cstecgi.cgi, where an attacker can manipulate the hostName parameter to trigger an OS command injection. Impact is remote, with potential full compromise of affected ...