2 matches found
CVE-2024-24327
TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the pppoePass parameter in the setIpv6Cfg function...
CVE-2024-24327
TOTOLINK A3300R (firmware version V17.0.0cu.557_B20221024) contains a command-injection flaw in the setIpv6Cfg function via the pppoePass parameter. This is rated high impact (CVSS v3.1: CRITICAL, 9.8) with network attack vector and no user interaction. Public details consistently name the vulner...