CVE-2024-41318 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_wps_gen_pincode ifname command injection

Inserito da Angelo Barbosa | Lug 22, 2024 | CVE

A vulnerability classified as critical has been found in TOTOLINK A6000R 1.0.1-B20201211.2000. Affected is the function apcli_wps_gen_pincode. The manipulation of the argument ifname leads to command injection.

This vulnerability is traded as CVE-2024-41318. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-41318 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_wps_gen_pincode ifname command injection

Post correlati

CVE-2024-23744 | mbed TLS 3.5.1 TLS 1.3 ClientHallo denial of service (Issue 8694)

CVE-2024-28097 | Schoolbox up to 23.1.2 Calendar cross site scripting

CVE-2024-7530 | Mozilla Firefox up to up to 128 Garbage Collection use after free

CVE-2024-2583 | WP Shortcodes Plugin up to 7.0.4 on WordPress Shortcode Attribute cross site scripting