CVE-2026-6113 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setTtyServiceCfg ttyEnable os command injection

Inserito da Angelo Barbosa | Apr 11, 2026 | CVE

A vulnerability classified as critical was found in Totolink A7100RU 7.4cu.2313_b20191024. Affected by this vulnerability is the function setTtyServiceCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument ttyEnable leads to os command injection.

This vulnerability is uniquely identified as CVE-2026-6113. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-6113 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setTtyServiceCfg ttyEnable os command injection

Post correlati

CVE-2025-48290 | bslthemes ruizarch Theme on WordPress file inclusion

CVE-2024-49733 | Google Android 12/12L/13/14/15 ServiceListing.java reload information disclosure

CVE-2023-42246 | Selesta Visual Access Manager up to 4.42.1 /vam/vam_ep.php cross site scripting

CVE-2025-39979 | Linux Kernel up to 6.16.9 mlx5_cmd_hws_delete_fte initialization