CVE-2025-44837 | TOTOLINK CPE CP900 6.3c.1144_B20190715 CloudSrvUserdataVersionCheck magicid command injection

Inserito da Angelo Barbosa | Mag 1, 2025 | CVE

A vulnerability classified as critical was found in TOTOLINK CPE CP900 6.3c.1144_B20190715. Affected by this vulnerability is the function CloudSrvUserdataVersionCheck. The manipulation of the argument magicid leads to command injection.

This vulnerability is known as CVE-2025-44837. The attack can be launched remotely. There is no exploit available.

CVE-2025-44837 | TOTOLINK CPE CP900 6.3c.1144_B20190715 CloudSrvUserdataVersionCheck magicid command injection

Post correlati

CVE-2024-7370 | SourceCodester Simple Realtime Quiz System 1.0 /manage_quiz.php id sql injection

CVE-2024-54851 | Teedy up to 1.12 cross-site request forgery

CVE-2025-0436 | Google Chrome up to 131.0.6778.264 Skia heap-based overflow (ID 382786)

CVE-2024-3366 | Xuxueli xxl-job up to 2.4.1 Template JdkSerializeTool.java deserialize injection (Issue 3391)