CVE-2024-34205 | Totolink CP450 4.1.0cu.747_B20191224 download_firmware command injection

Inserito da Angelo Barbosa | Mag 9, 2024 | CVE

A vulnerability, which was classified as critical, was found in Totolink CP450 4.1.0cu.747_B20191224. This affects the function download_firmware. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2024-34205. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-34205 | Totolink CP450 4.1.0cu.747_B20191224 download_firmware command injection

Post correlati

CVE-2023-50313 | IBM WebSphere Application Server 8.5/9.0 TLS Configuration risky encryption (XFDB-274812)

CVE-2024-2331 | SourceCodester Tourist Reservation System 1.0 System.cpp ad_writedata ad_code buffer overflow

CVE-2024-25519 | RuvarOA 6.01/12.01 wf_work_print.aspx idlist sql injection

CVE-2024-41512 | CADClick up to 1.11.0 ccHandler.aspx bomid sql injection