CVE-2024-23058 | Totolink A3300R 17.0.0cu.557_B20221024 setTr069Cfg pass command injection

Inserito da Angelo Barbosa | Gen 11, 2024 | CVE

A vulnerability classified as critical has been found in Totolink A3300R 17.0.0cu.557_B20221024. This affects the function setTr069Cfg. The manipulation of the argument pass leads to command injection.

This vulnerability is uniquely identified as CVE-2024-23058. The attack can only be done within the local network. There is no exploit available.

CVE-2024-23058 | Totolink A3300R 17.0.0cu.557_B20221024 setTr069Cfg pass command injection

Post correlati

CVE-2024-37494 | KaineLabs Youzify Plugin up to 1.2.5 on WordPress sql injection

CVE-2023-51067 | QStar Archive Solutions 3-0 Build 7 Link cross site scripting

CVE-2024-7830 | D-Link DNS-1550-04 up to 20240814 photocenter_mgr.cgi cgi_move_photo photo_name buffer overflow

CVE-2024-38483 | Dell Client Platform BIOS prior 1.26.0/1.35.0/2.32.0 input validation (dsa-2024-260)