CVE-2026-7749 | Totolink N300RH 3.2.4-B20220812 POST Request /cgi-bin/cstecgi.cgi setWanConfig priDns buffer overflow

Inserito da Angelo Barbosa | Mag 3, 2026 | CVE

A vulnerability has been found in Totolink N300RH 3.2.4-B20220812 and classified as critical. This affects the function setWanConfig of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument priDns leads to buffer overflow.

This vulnerability is listed as CVE-2026-7749. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-7749 | Totolink N300RH 3.2.4-B20220812 POST Request /cgi-bin/cstecgi.cgi setWanConfig priDns buffer overflow

Post correlati

CVE-2024-43442 | OTRS/OTRS Community Edition System Configuration Module cross site scripting

CVE-2024-39606 | Intel PROSet/Wireless WiFi/Killer WiFi up to 23.79 on Windows denial of service (intel-sa-01224)

CVE-2024-1363 | Easy Accordion Plugin up to 2.3.4 on WordPress cross site scripting

CVE-2024-4943 | Blocksy Plugin up to 2.0.46 on WordPress cross site scripting