CVE-2024-41318 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_wps_gen_pincode ifname command injection

Inserito da Angelo Barbosa | Lug 22, 2024 | CVE

A vulnerability classified as critical has been found in TOTOLINK A6000R 1.0.1-B20201211.2000. Affected is the function apcli_wps_gen_pincode. The manipulation of the argument ifname leads to command injection.

This vulnerability is traded as CVE-2024-41318. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-41318 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_wps_gen_pincode ifname command injection

Post correlati

CVE-2023-3904 | GitLab Enterprise Edition up to 16.4.3/16.6.1 Issue Time access control (Issue 418226)

CVE-2024-4735 | Campcodes Legal Case Management System 1.0 /admin/tasks task_subject cross site scripting

CVE-2023-49980 | Best Student Result Management System 1.0 exposure of information through directory listing

CVE-2024-30377 | G Data Total Security Scan Server link following (ZDI-24-1159)