PT-2022-21325 · Totolink · Totolink Ex300 V2
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX300 V2 version 4.0.3c.7484 Description: A command injection issue was found via the langType parameter in the setLanguageCfg function. This issue can be exploited through a crafted MQTT data packet. Recommendations: For TOTOLINK...