CVE-2024-34206 | Totolink CP450 4.1.0cu.747_B20191224 setWebWlanIdx webWlanIdx command injection

Inserito da Angelo Barbosa | Mag 9, 2024 | CVE

A vulnerability was found in Totolink CP450 4.1.0cu.747_B20191224 and classified as critical. This issue affects the function setWebWlanIdx. The manipulation of the argument webWlanIdx leads to command injection.

The identification of this vulnerability is CVE-2024-34206. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-34206 | Totolink CP450 4.1.0cu.747_B20191224 setWebWlanIdx webWlanIdx command injection

Post correlati

CVE-2024-6913 | PerkinElmer ProcessPlus up to 1.11.6507.0 on Windows unnecessary privileges

CVE-2024-10300 | PHPGurukul Medical Card Generation System 1.0 View Enquiry Page /admin/view-enquiry.php viewid sql injection

CVE-2024-46077 | itsourcecode Online Tours and Travels Management System 1.0 travellers.php cross site scripting

CVE-2024-7612 | Ivanti Endpoint Manager Mobile up to 12.0.0.4/12.1.0.3 Configuration File permission assignment