CVE-2026-0731 | TOTOLINK WA1200 5.9c.2914 HTTP Request cstecgi.cgi null pointer dereference

Inserito da Angelo Barbosa | Gen 8, 2026 | CVE

A vulnerability marked as critical has been reported in TOTOLINK WA1200 5.9c.2914. The impacted element is an unknown function of the file cstecgi.cgi of the component HTTP Request Handler. The manipulation leads to null pointer dereference.

This vulnerability is uniquely identified as CVE-2026-0731. The attack is possible to be carried out remotely. Moreover, an exploit is present.

It is recommended to apply restrictive firewalling.

CVE-2026-0731 | TOTOLINK WA1200 5.9c.2914 HTTP Request cstecgi.cgi null pointer dereference

Post correlati

CVE-2023-48336 | cybernetikz Easy Social Icons Plugin up to 3.2.4 on WordPress cross site scripting

CVE-2025-21397 | Microsoft

CVE-2024-42737 | TOTOLINK X5000r 9.1.0cu.2350_b20230313 /cgi-bin/cstecgi.cgi delBlacklist os command injection

CVE-2025-27847 | ESPEC North America Web Controller 3 up to 3.3.7 /api/v4/auth/ privilege escalation