CVE-2024-42736 | TOTOLINK X5000r 9.1.0cu.2350_b20230313 /cgi-bin/cstecgi.cgi addBlacklist os command injection

Inserito da Angelo Barbosa | Ago 13, 2024 | CVE

A vulnerability was found in TOTOLINK X5000r 9.1.0cu.2350_b20230313. It has been rated as critical. This issue affects the function addBlacklist of the file /cgi-bin/cstecgi.cgi. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2024-42736. The attack may be initiated remotely. There is no exploit available.

CVE-2024-42736 | TOTOLINK X5000r 9.1.0cu.2350_b20230313 /cgi-bin/cstecgi.cgi addBlacklist os command injection

Post correlati

CVE-2024-5652 | Docker Desktop up to 4.30.x on Windows Daemon denial of service

CVE-2024-22142 | Cozmoslabs Profile Builder Pro Plugin up to 3.10.0 on WordPress cross site scripting

CVE-2024-48900 | Moodle Badge Recipient resource injection

CVE-2024-28326 | Asus RT-N12+ B1 UART Interface access control