A vulnerability has been found in Totolink CP900L 4.1.5cu.798_B20221228 and classified as critical. Affected by this vulnerability is the function
NTPSyncWithHost
of the component Request Handler. The manipulation of the argument hostTime leads to command injection.
This vulnerability is known as CVE-2024-35397. The attack can be launched remotely. There is no exploit available.