CVE-2026-6114 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setNetworkCfg proto os command injection

Inserito da Angelo Barbosa | Apr 11, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Totolink A7100RU 7.4cu.2313_b20191024. Affected by this issue is the function setNetworkCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument proto results in os command injection.

This vulnerability was named CVE-2026-6114. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-6114 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setNetworkCfg proto os command injection

Post correlati

CVE-2024-13778 | heroplugins Hero Mega Menu Plugin up to 1.16.5 on WordPress sql injection

CVE-2024-24921 | Siemens Simcenter Femap prior 2401.0000 Catia Model File memory corruption (ssa-000072)

CVE-2024-4425 | CEMI Tomasz Pawełek CemiPark 4.5/4.7/5.03 FTP/SIP credentials storage

CVE-2025-49399 | Basix NEX-Forms Plugin up to 9.1.3 on WordPress cross-site request forgery