CVE-2024-8077 | TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 setTracerouteCfg os command injection

Inserito da Angelo Barbosa | Ago 22, 2024 | CVE

A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been classified as critical. This affects the function setTracerouteCfg. The manipulation leads to os command injection.

This vulnerability is uniquely identified as CVE-2024-8077. It is possible to initiate the attack remotely. There is no exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-8077 | TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 setTracerouteCfg os command injection

Post correlati

CVE-2024-20361 | Cisco FirePOWER Management Center Access Control List access control (cisco-sa-fmc-object-bypass-fTH8tDjq)

CVE-2024-30254 | JCWasmx86 mesonlsp up to 4.1.3 Project path traversal (GHSA-48c5-35fh-846h)

CVE-2024-41013 | Linux Kernel up to 6.10 xfs_dir2_data_unused out-of-bounds (0c7fcdb6d06c)

CVE-2023-48752 | Happyforms Form Builder to Get in Touch with Visitors Plugin up to 1.25.9 on WordPress cross site scripting