2 matches found
CVE-2025-44845
TOTOLINK CA600-PoE V5.3c.6665B20180820 was found to contain a command injection vulnerability in the NTPSyncWithHost function via the hostTime parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...
CVE-2025-44845
CVE-2025-44845 affects TOTOLINK CA600-PoE V5.3c.6665_B20180820. The NTPSyncWithHost function is vulnerable via the hostTime parameter, allowing an attacker to execute arbitrary commands through a crafted request. Reported across multiple sources (NVD/Red Hat/CNVD) with the same vulnerability desc...