29 matches found
CVE-2023-51011
CVE-2023-51011 affects TOTOLINK EX1800T, firmware version 9.1.0cu.2112_B20220316. The vulnerability is an unauthorized arbitrary command execution through the lanPriDns parameter of the setLanConfig interface in cstecgi.cgi. Multiple sources confirm the issue; exploitation details are not provide...
PT-2023-31727 · Totolink · Totolink Ex1800T
Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue concerns unauthorized arbitrary command execution. It specifically affects the lanGateway parameter of the setLanConfig interface in the cstecgi.cgi. Recommendations: For...
CVE-2023-51017
CVE-2023-51017 affects TOTOLINK EX1800T (version 9.1.0cu.2112_B20220316). The root cause is an input handling flaw in the lanIp parameter of the setLanConfig interface handled by cstecgi.cgi, allowing unauthorized arbitrary command execution. Impact is high: remote command execution with network ...
CVE-2023-51014
TOTOLINK EX1800T V9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanSecDns parameter’ of the setLanConfig interface of the cstecgi .cgi...
PT-2023-31732 · Totolink · Totolink Ex1800T
Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue allows for unauthorized arbitrary command execution. This is possible through the lanIp parameter of the setLanConfig interface in the cstecgi.cgi endpoint. Recommendation...
PT-2023-31726 · Totolink · Totolink Ex1800T
Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue concerns unauthorized arbitrary command execution. It is related to the lanPriDns parameter of the "setLanConfig" interface in the "cstecgi.cgi". Recommendations: For...
TOTOLINK EX1800T 安全漏洞
The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T lanIp parameter. The vulnerability stems from the failure of the lanIp parameter of the setLanConfig interface of cstecgi .cgi to properly filter...
PT-2023-31728 · Totolink · Totolink Ex1800T
Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue concerns unauthorized arbitrary command execution in the lanNetmask parameter of the setLanConfig interface of the cstecgi.cgi. Recommendations: For TOTOlink EX1800T versi...
CVE-2023-51017
TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi...