CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/04/27 12:15 p.m.•2 views

CVE-2026-7123 Totolink A8000RU CGI cstecgi.cgi setIptvCfg os command injection

ATTACKERKB•added 2026/04/27 12:15 p.m.•0 views

CVE-2026-7123

Exploits0References5Affected Software1

EUVD•added 2026/04/27 12:15 p.m.•1 views

EUVD-2026-25839

CNNVD•added 2026/04/27 12:0 a.m.•4 views

TOTOLINK A8000RU 命令注入漏洞

The TOTOLINK A8000RU is a wireless router produced by TOTOLINK Corporation. The Totolink A8000RU 7.1cu.643b20200521 version contains a command injection vulnerability. This vulnerability stems from the setIptvCfg function in the CGI Handler component/cgi-bin/cstecgi.cgi file, which allows for OS...

10CVSS7.3AI score0.01221EPSS

Exploits0References1

Positive Technologies•added 2026/04/27 12:0 a.m.•2 views

PT-2026-35417

A vulnerability was found in Totolink A8000RU 7.1cu.643 b20200521. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument setIptvCfg results in os command injection. The attack can be initiated remotely. The...

EUVD•added 2026/04/09 9:31 a.m.•1 views

Exploits0References6

EUVD-2026-20866

A weakness has been identified in Totolink A7100RU 7.4cu.2313b20191024. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument igmpVer causes os command injection. The attack is possible to be carried out remotely. The...

NVD•added 2026/04/09 7:16 a.m.•0 views

Exploits0References6

CVE-2026-5852

10CVSS0.01235EPSS

CVE•added 2026/04/09 6:15 a.m.•6 views

CVE-2026-5852

The CVE affects Totolink A7100RU with firmware 7.4cu.2313_b20191024, specifically the CGI component CGI Handler under /cgi-bin/cstecgi.cgi. The vulnerable function is setIptvCfg, where manipulating the igmpVer argument leads to an OS command injection. The issue is reachable remotely and, per the...

Cvelist•added 2026/04/09 6:15 a.m.•19 views

CVE-2026-5852 Totolink A7100RU CGI cstecgi.cgi setIptvCfg os command injection

10CVSS0.01235EPSS

Vulnrichment•added 2026/04/09 6:15 a.m.•1 views

CVE-2026-5852 Totolink A7100RU CGI cstecgi.cgi setIptvCfg os command injection

ATTACKERKB•added 2026/04/09 6:15 a.m.•2 views

CVE-2026-5852

Exploits0References5Affected Software1

Positive Technologies•added 2026/04/09 12:0 a.m.•3 views

PT-2026-31591

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A weakness exists in the Totolink A7100RU router. The setIptvCfg function within the /cgi-bin/cstecgi.cgi file, part of the CGI Handler component, is susceptible to OS command injection...

10CVSS7.4AI score0.01235EPSS

Exploits0References12

CNNVD•added 2026/04/09 12:0 a.m.•3 views

TOTOLINK A7100RU 操作系统命令注入漏洞

The TOTOLINK A7100RU is a wireless router produced by TOTOLINK, a Chinese company. The Totolink A7100RU 7.4cu.2313b20191024 version contains a vulnerability related to operating system command injection. This vulnerability stems from an incorrect operation of the setIptvCfg function in the...

10CVSS7.3AI score0.01235EPSS