Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-42743

Aug. 12, 2024, 8:15 p.m.

Product(s) Impacted

TOTOLINK X5000r

  • v9.1.0cu.2350_b20230313

Description

In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setSyslogCfg . Authenicated Attackers can send malicious packet to execute arbitary commands.

Weaknesses

Date

Published: Aug. 12, 2024, 8:15 p.m.

Last Modified: Aug. 12, 2024, 8:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://github.com/ cve@mitre.org