4 matches found
CVE-2024-57016
TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "user" parameter in setVpnAccountCfg...
CVE-2024-57016
CVE-2024-57016 affects TOTOLINK X5000R, specifically the function setVpnAccountCfg; the vulnerability arises from the user parameter not being properly sanitized in the /web/cgi-bin/cstecgi.cgi endpoint, enabling an OS command injection. Reported details from PT-2025-3382 describe that this could...
CVE-2024-57016
TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "user" parameter in setVpnAccountCfg...
CVE-2024-57016
TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "user" parameter in setVpnAccountCfg...