CVE-2025-9935 | TOTOLINK N600R 4.3.0cu.7866_B20220506 cstecgi.cgi sub_4159F8 command injection

Inserito da Angelo Barbosa | Set 3, 2025 | CVE

A vulnerability classified as critical was found in TOTOLINK N600R 4.3.0cu.7866_B20220506. This vulnerability affects the function sub_4159F8 of the file /web_cste/cgi-bin/cstecgi.cgi. Executing manipulation can lead to command injection.

This vulnerability is handled as CVE-2025-9935. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2025-9935 | TOTOLINK N600R 4.3.0cu.7866_B20220506 cstecgi.cgi sub_4159F8 command injection

Post correlati

CVE-2025-7766 | Lantronix Provisioning Manager AV xml external entity reference (icsa-25-203-02)

CVE-2024-6311 | Funnelforms Free Plugin up to 3.7.3.2 on WordPress unrestricted upload

CVE-2024-21751 | RabbitLoader Plugin up to 2.19.13 on WordPress authorization

CVE-2024-34195 | TOTOLINK AC1200 A3002R 1.1.1-B20200824 Boa Server formWlanRedirect buffer overflow