2 matches found
PT-2022-25905 · Totolink · Totolink Nr1800X
Name of the Vulnerable Software and Affected Versions: TOTOLINK NR1800X version 9.1.0u.6279 B20210910 Description: A command injection issue was found via the UploadFirmwareFile function at the "/cgi-bin/cstecgi.cgi" API endpoint. Recommendations: For TOTOLINK NR1800X version 9.1.0u.6279 B2021091...
PT-2022-23506 · Totolink · Totolink A950Rg
Name of the Vulnerable Software and Affected Versions: TOTOLINK A950RG version 4.1.2cu.5204 B20210112 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...