CVE-2025-4271 | TOTOLINK A720R 4.1.5cu.374 /cgi-bin/cstecgi.cgi topicurl information disclosure

Inserito da Angelo Barbosa | Mag 4, 2025 | CVE

A vulnerability was found in TOTOLINK A720R 4.1.5cu.374. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument topicurl with the input showSyslog leads to information disclosure.

This vulnerability is known as CVE-2025-4271. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-4271 | TOTOLINK A720R 4.1.5cu.374 /cgi-bin/cstecgi.cgi topicurl information disclosure

Post correlati

CVE-2023-35017 | IBM Security Verify Governance 10.0.2 Identity Manager cleartext transmission

CVE-2024-6155 | wpsoul Greenshift Plugin up to 9.0.0 on WordPress greenshift_download_file_localy authorization

CVE-2023-5512 | GitLab Community Edition/Enterprise Edition prior 16.4.4/16.5.4/16.6.2 File Name code injection (Issue 427827)

CVE-2024-34486 | Faucet SDN Ryu 4.34 parser.py OFPPacketQueue infinite loop (Issue 190)