CVE-2024-7156 | TOTOLINK A3700R 9.1.2u.5822_B20200513 apmib Configuration ExportSettings.sh information disclosure

A vulnerability was found in TOTOLINK A3700R 9.1.2u.5822_B20200513 and classified as problematic. Affected by this issue is some unknown functionality of the file /cgi-bin/ExportSettings.sh of the component apmib Configuration Handler. The manipulation leads to information disclosure.

This vulnerability is handled as CVE-2024-7156. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7156 | TOTOLINK A3700R 9.1.2u.5822_B20200513 apmib Configuration ExportSettings.sh information disclosure

Post correlati

CVE-2024-22525 | dnspod-sr 0dfbd37 memory corruption (Issue 61)

CVE-2024-25312 | code-projects Simple School Management System 1.0 School/sub_delete.php id sql injection

CVE-2024-32881 | danswer-ai danswer up to 0.3.62 improper authorization

CVE-2024-41318 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_wps_gen_pincode ifname command injection