CVE-2024-34210 | Totolink CP450 4.1.0cu.747_B20191224 CloudACMunualUpdate FileName command injection

Inserito da Angelo Barbosa | Mag 9, 2024 | CVE

A vulnerability has been found in Totolink CP450 4.1.0cu.747_B20191224 and classified as critical. This vulnerability affects the function CloudACMunualUpdate. The manipulation of the argument FileName leads to command injection.

This vulnerability was named CVE-2024-34210. The attack needs to be done within the local network. There is no exploit available.

CVE-2024-34210 | Totolink CP450 4.1.0cu.747_B20191224 CloudACMunualUpdate FileName command injection

Post correlati

CVE-2024-4654 | BlueNet Technology Clinical Browsing System 1.2.1 /xds/cloudInterface.php INSTI_CODE sql injection

CVE-2024-31673 | Kliqqi CMS 2.0.2 load_data.php userid sql injection

CVE-2024-7437 | SimpleMachines SMF 2.1.4 Delete User index.php aid resource injection

CVE-2024-3362 | SourceCodester Online Library System 1.0 controller.php IBSN sql injection