Lucene search
K

38 matches found

CNVD
CNVD
added 2024/01/11 12:0 a.m.2 views

TOTOLINK LR1200GB setUssd Function OS Command Injection Vulnerability

The TOTOLINK LR1200GB is a wireless dual-band 4GLTE router from China's Gion Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks, and is primarily used to provide mobile broadband connectivity and Wi-Fi coverage. The TOTOLINK LR1200GB suffers from an operating system command...

9.8CVSS7.6AI score0.03834EPSS
Exploits1References1
NVD
NVD
added 2024/01/08 3:15 a.m.24 views

CVE-2024-0294

A vulnerability, which was classified as critical, has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected by this issue is the function setUssd of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ussd leads to os command injection. The attack may be launched remotely. T...

9.8CVSS8.2AI score0.03834EPSS
Exploits1References3
OSV
OSV
added 2024/01/08 3:15 a.m.3 views

CVE-2024-0294

A vulnerability, which was classified as critical, has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected by this issue is the function setUssd of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ussd leads to os command injection. The attack may be launched remotely. T...

9.8CVSS5.5AI score0.03834EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/08 3:0 a.m.21 views

CVE-2024-0294 Totolink LR1200GB cstecgi.cgi setUssd os command injection

A vulnerability, which was classified as critical, has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected by this issue is the function setUssd of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ussd leads to os command injection. The attack may be launched remotely. T...

7.5CVSS9.9AI score0.03834EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/01/08 3:0 a.m.2 views

CVE-2024-0294 Totolink LR1200GB cstecgi.cgi setUssd os command injection

A vulnerability, which was classified as critical, has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected by this issue is the function setUssd of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ussd leads to os command injection. The attack may be launched remotely. T...

7.5CVSS7.6AI score0.03834EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.4 views

TOTOLINK LR1200GB 操作系统命令注入漏洞

The TOTOLINK LR1200GB is a wireless dual-band 4GLTE router from China's Gion Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks, and is primarily used to provide mobile broadband connectivity and Wi-Fi coverage. The TOTOLINK LR1200GB suffers from an operating system command...

9.8CVSS7.5AI score0.03834EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/01/07 12:0 a.m.4 views

PT-2024-1057 · Totolink · Totolink Lr1200Gb

Name of the Vulnerable Software and Affected Versions: Totolink LR1200GB version 9.1.0u.6619 B20230130 Description: A critical issue exists due to the lack of neutralization of special elements in the setUssd function of the /cgi-bin/cstecgi.cgi file. This allows a remote attacker to execute...

10CVSS7.9AI score0.03834EPSS
Exploits1References9
OSV
OSV
added 2023/07/07 2:15 p.m.5 views

CVE-2023-37148

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a command injection vulnerability via the ussd parameter in the setUssd function...

9.8CVSS5.8AI score0.01958EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/07/07 2:15 p.m.5 views

CVE-2023-37148

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a command injection vulnerability via the ussd parameter in the setUssd function...

9.8CVSS7.4AI score0.01958EPSS
Exploits1References2
NVD
NVD
added 2023/07/07 2:15 p.m.22 views

CVE-2023-37148

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a command injection vulnerability via the ussd parameter in the setUssd function...

9.8CVSS9.8AI score0.01958EPSS
Exploits1References1
Prion
Prion
added 2023/07/07 2:15 p.m.17 views

Command injection

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a command injection vulnerability via the ussd parameter in the setUssd function...

7.5CVSS9.8AI score0.01958EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/07 12:0 a.m.16 views

CVE-2023-37148

TOTOLINK LR350 V9.3.5u.6369B20220309 was discovered to contain a command injection vulnerability via the ussd parameter in the setUssd function...

8AI score0.01958EPSS
Exploits1References1
CNVD
CNVD
added 2022/11/25 12:0 a.m.3 views

TOTOLINK NR1800X setUssd Function Command Injection Vulnerability

TOTOLINK NR1800X is a 5G NR indoor Wi-Fi and SIP CPE broadband access device from China's Gion Electronics TOTOLINK, which is mainly used for the deployment of NR fixed data services in homes and offices to support 5G NR network connectivity. A command injection vulnerability exists in the TOTOLI...

9.8CVSS8.6AI score0.0181EPSS
Exploits1References1
OSV
OSV
added 2022/11/23 4:15 p.m.2 views

CVE-2022-44251

TOTOLINK NR1800X V9.1.0u.6279B20210910 contains a command injection via the ussd parameter in the setUssd function...

9.8CVSS5.8AI score0.0181EPSS
Exploits1References1
Prion
Prion
added 2022/11/23 4:15 p.m.21 views

Command injection

TOTOLINK NR1800X V9.1.0u.6279B20210910 contains a command injection via the ussd parameter in the setUssd function...

7.5CVSS9.7AI score0.0181EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/23 12:0 a.m.7 views

CVE-2022-44251

TOTOLINK NR1800X V9.1.0u.6279B20210910 contains a command injection via the ussd parameter in the setUssd function...

9.8AI score0.0181EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/11/23 12:0 a.m.5 views

PT-2022-27150 · Totolink · Totolink Nr1800X

Name of the Vulnerable Software and Affected Versions: TOTOLINK NR1800X version 9.1.0u.6279 B20210910 Description: The issue is related to a command injection via the ussd parameter in the setUssd function. This allows for potential exploitation. No information is provided about the estimated...

9.8CVSS9.5AI score0.0181EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/11/23 12:0 a.m.6 views

TOTOLINK NR1800X 操作系统命令注入漏洞

TOTOLINK NR1800X is a 5G NR indoor Wi-Fi and SIP CPE broadband access device from China's Gion Electronics TOTOLINK, which is mainly used for the deployment of NR fixed data services in homes and offices to support 5G NR network connectivity. A command injection vulnerability exists in the TOTOLI...

9.8CVSS8.5AI score0.0181EPSS
Exploits1References2
Rows per page
Query Builder