6 matches found
CVE-2024-57036
TOTOLINK A810R V4.1.2cu.5032B20200407 was found to contain a command insertion vulnerability in downloadFile.cgi main function. This vulnerability allows an attacker to execute arbitrary commands by sending HTTP request...
CVE-2024-57036
TOTOLINK A810R V4.1.2cu.5032B20200407 was found to contain a command insertion vulnerability in downloadFile.cgi main function. This vulnerability allows an attacker to execute arbitrary commands by sending HTTP request...
CVE-2024-57036
creationtimestamp| type| source ---|---|--- 2025-01-21 16:09:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113867210977785280 2025-01-21 16:15:59+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbasokhwy2b 2025-01-21 16:49:38+00:00| seen|...
CVE-2024-57036
TOTOLINK A810R V4.1.2cu.5032B20200407 was found to contain a command insertion vulnerability in downloadFile.cgi main function. This vulnerability allows an attacker to execute arbitrary commands by sending HTTP request...
CVE-2024-57036
TOTOLINK A810R V4.1.2cu.5032B20200407 was found to contain a command insertion vulnerability in downloadFile.cgi main function. This vulnerability allows an attacker to execute arbitrary commands by sending HTTP request...
CVE-2024-57036
CVE-2024-57036 applies to TOTOLINK A810R, specifically version 4.1.2cu.5032_B20200407. The vulnerability is a command insertion flaw in the downloadFile.cgi main function that allows an attacker to execute arbitrary commands by sending a crafted HTTP request. The reported CVSSv3.1 base score is 8...