CVE-2024-23061 | Totolink A3300R 17.0.0cu.557_B20221024 setScheduleCfg minute command injection

Inserito da Angelo Barbosa | Gen 11, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Totolink A3300R 17.0.0cu.557_B20221024. This issue affects the function setScheduleCfg. The manipulation of the argument minute leads to command injection.

The identification of this vulnerability is CVE-2024-23061. The attack needs to be done within the local network. There is no exploit available.

CVE-2024-23061 | Totolink A3300R 17.0.0cu.557_B20221024 setScheduleCfg minute command injection

Post correlati

CVE-2024-28816 | Student Information Chatbot 1.0 Login index.php username/password sql injection

CVE-2023-50823 | Wipeout Media CSS & JavaScript Toolbox Plugin up to 11.7 on WordPress cross site scripting

CVE-2021-47496 | Linux Kernel up to 5.4.156/5.10.76/5.14.15 tls_err_abort memory corruption

CVE-2024-29945 | Splunk Enterprise up to 9.0.8/9.1.3/9.2.0 JsonWebToken Component log file (SVD-2024-0301)