CVE-2026-5852 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setIptvCfg igmpVer os command injection

Inserito da Angelo Barbosa | Apr 8, 2026 | CVE

A vulnerability was found in Totolink A7100RU 7.4cu.2313_b20191024. It has been rated as critical. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument igmpVer causes os command injection.

This vulnerability is tracked as CVE-2026-5852. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-5852 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setIptvCfg igmpVer os command injection

Post correlati

CVE-2025-4445 | D-Link DIR-605L 2.13B01 wake_on_lan mac command injection

CVE-2024-34767 | HasThemes ShopLentor Plugin up to 2.8.7 on WordPress cross site scripting

CVE-2025-9424 | Ruijie WS7204-A 2017.06.15 branch_import.php?a=branch_list province os command injection

CVE-2024-8796 | Devise-Two-Factor up to 5.x Multi-Factor Authentication Code entropy