Lucene search
K

5 matches found

Prion
Prion
added 2024/01/30 3:15 p.m.13 views

Command injection

TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the port or enable parameter in the setRemoteCfg function...

7.5CVSS8.3AI score0.01517EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/11 12:0 a.m.7 views

PT-2024-19650 · Totolink · Totolink A3300R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3300R version V17.0.0cu.557 B20221024 Description: A command injection issue was discovered via the username parameter in the setDdnsCfg function. This allows for potential exploitation. Recommendations: For TOTOLINK A3300R version...

9.8CVSS9.6AI score0.01728EPSS
Exploits1References4
Prion
Prion
added 2023/05/18 2:15 a.m.21 views

Command injection

TOTOLINK A3300R v17.0.0cu.557 is vulnerable to Command Injection via /cgi-bin/cstecgi.cgi...

7.5CVSS9.6AI score0.01376EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/05/18 12:0 a.m.24 views

CVE-2023-31729

TOTOLINK A3300R v17.0.0cu.557 is vulnerable to Command Injection via /cgi-bin/cstecgi.cgi...

9.9AI score0.01376EPSS
Exploits0References2
CVE
CVE
added 2023/05/18 12:0 a.m.87 views

CVE-2023-31729

TOTOLINK A3300R v17.0.0cu.557 is affected by a Command Injection vulnerability in /cgi-bin/cstecgi.cgi. The CNVD entry attributes the issue to a failure to properly filter constructed command characters, enabling arbitrary command execution. Impact is rated CRITICAL (network vector, no authentica...

9.8CVSS9.6AI score0.01376EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder