CVE-2024-41316 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_cancel_wps ifname command injection

Inserito da Angelo Barbosa | Lug 22, 2024 | CVE

A vulnerability was found in TOTOLINK A6000R 1.0.1-B20201211.2000. It has been declared as critical. This vulnerability affects the function apcli_cancel_wps. The manipulation of the argument ifname leads to command injection.

This vulnerability was named CVE-2024-41316. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-41316 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_cancel_wps ifname command injection

Post correlati

CVE-2023-1577 | Lenovo Driver Manager prior 3.1.1307.1308 input validation

CVE-2023-51556 | Foxit PDF Reader AcroForm Doc use after free (ZDI-23-1869)

CVE-2024-21407 | Microsoft unknown vulnerability

CVE-2024-21726 | Joomla CMS up to 3.10.14/4.4.2/5.0.2 cross site scripting