5 matches found
EUVD-2024-48181
Malicious code in bioql PyPI...
CVE-2024-7214
A vulnerability has been found in TOTOLINK LR350 9.3.5u.6369B20220309 and classified as critical. Affected by this vulnerability is the function setWanCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostName leads to command injection. The attack can be launched remotely. T...
CVE-2024-7214
The CVE-2024-7214 entry concerns TOTOLINK LR350 firmware (version 9.3.5u.6369_B20220309). The vulnerability is a command-injection flaw in the setWanCfg function of /cgi-bin/cstecgi.cgi, triggered by manipulating the hostName parameter. Root cause: insufficient input filtering for constructed com...
CVE-2024-7214 TOTOLINK LR350 cstecgi.cgi setWanCfg command injection
A vulnerability has been found in TOTOLINK LR350 9.3.5u.6369B20220309 and classified as critical. Affected by this vulnerability is the function setWanCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostName leads to command injection. The attack can be launched remotely. T...
CVE-2024-7214 TOTOLINK LR350 cstecgi.cgi setWanCfg command injection
A vulnerability has been found in TOTOLINK LR350 9.3.5u.6369B20220309 and classified as critical. Affected by this vulnerability is the function setWanCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostName leads to command injection. The attack can be launched remotely. T...