6 matches found
CVE-2025-1829
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024B20220329. It has been declared as critical. This vulnerability affects the function setMtknatCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument mtkhnatEnable leads to os command injection. The attack can be initiated...
CVE-2025-1829
creationtimestamp| type| source ---|---|--- 2025-03-02 19:28:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6106 2025-03-02 21:07:21+00:00| seen| https://t.me/cvedetector/19266 2025-06-06 15:15:20+00:00| seen|...
CVE-2025-1829
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024B20220329. It has been declared as critical. This vulnerability affects the function setMtknatCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument mtkhnatEnable leads to os command injection. The attack can be initiated...
CVE-2025-1829 TOTOLINK X18 cstecgi.cgi setMtknatCfg os command injection
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024B20220329. It has been declared as critical. This vulnerability affects the function setMtknatCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument mtkhnatEnable leads to os command injection. The attack can be initiated...
CVE-2025-1829 TOTOLINK X18 cstecgi.cgi setMtknatCfg os command injection
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024B20220329. It has been declared as critical. This vulnerability affects the function setMtknatCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument mtkhnatEnable leads to os command injection. The attack can be initiated...
CVE-2025-1829
TOTOLINK X18 devices running 9.1.0cu.2024_B20220329 are affected by a command-injection vulnerability in the CGI endpoint /cgi-bin/cstecgi.cgi, specifically via manipulating the mtkhnatEnable argument in the setMtknatCfg function. Exploitation can be performed remotely and has been disclosed publ...