CVE-2026-6168 | TOTOLINK A7000R up to 9.1.0u.6115 /cgi-bin/cstecgi.cgi setWiFiEasyGuestCfg ssid5g stack-based overflow

Inserito da Angelo Barbosa | Apr 12, 2026 | CVE

A vulnerability classified as critical has been found in TOTOLINK A7000R up to 9.1.0u.6115. The affected element is the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument ssid5g causes stack-based buffer overflow.

This vulnerability is registered as CVE-2026-6168. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-6168 | TOTOLINK A7000R up to 9.1.0u.6115 /cgi-bin/cstecgi.cgi setWiFiEasyGuestCfg ssid5g stack-based overflow

Post correlati

CVE-2022-49460 | Linux Kernel up to 5.18.2 remove state issue

CVE-2024-2480 | MHA Sistemas arMHAzena 9.6.0.0 Executa Page Companhia/Planta/Agente de/Agente até sql injection

CVE-2024-46325 | TP-LINK WR740N V6 popupSiteSurveyRpm.htm ssid stack-based overflow

CVE-2024-26978 | Linux Kernel up to 6.8.2 max310x new_device null pointer dereference