Lucene search
+L

5 matches found

nvd
nvd
added 2025/01/15 5:15 p.m.21 views

CVE-2024-57017

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "pass" parameter in setVpnAccountCfg...

8.8CVSS0.01573EPSS
Exploits1References2
circl
circl
added 2025/01/15 4:54 p.m.12 views

CVE-2024-57017

creationtimestamp| type| source ---|---|--- 2025-01-15 16:54:35+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1793 2025-01-15 17:16:04+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfsbel7etn2j 2025-01-15 18:24:35+00:00| seen|...

8.8CVSS7.5AI score0.01573EPSS
Exploits1References6
cvelist
cvelist
added 2025/01/15 12:0 a.m.20 views

CVE-2024-57017

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "pass" parameter in setVpnAccountCfg...

0.01573EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2025/01/15 12:0 a.m.5 views

CVE-2024-57017

TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "pass" parameter in setVpnAccountCfg...

8AI score0.01573EPSS
Exploits1References2
cve
cve
added 2025/01/15 12:0 a.m.80 views

CVE-2024-57017

Totolink X5000R exposure: OS command injection in setVpnAccountCfg via the pass parameter on firmware V9.1.0cu.2350_B20230313. Root cause appears to be inadequate filtering of input (CNVD entry notes failure to filter constructor special characters/commands). Impact described as arbitrary command...

8.8CVSS8AI score0.01573EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder