CVE-2024-57016 | TOTOLINK X5000R 9.1.0cu.2350_B20230313 setVpnAccountCfg user os command injection

Inserito da Angelo Barbosa | Gen 15, 2025 | CVE

A vulnerability was found in TOTOLINK X5000R 9.1.0cu.2350_B20230313. It has been classified as critical. This affects the function setVpnAccountCfg. The manipulation of the argument user leads to os command injection.

This vulnerability is uniquely identified as CVE-2024-57016. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-57016 | TOTOLINK X5000R 9.1.0cu.2350_B20230313 setVpnAccountCfg user os command injection

Post correlati

CVE-2024-5665 | Login Signup Popup Plugin 2.7.1/2.7.2 on WordPress Option authorization

CVE-2024-45109 | Adobe Photoshop Desktop up to 24.7.4/25.11 out-of-bounds write (apsb24-72)

CVE-2024-38680 | Appmaker Plugin up to 1.36.12 on WordPress cross site scripting

CVE-2024-57766 | MSFM prior 2025.01.01 fastjson system/table/editField deserialization