CVE-2024-0942 | Totolink /cgi-bin/cstecgi.cgi session expiration

Posted by Angelo Barbosa | Jan 26, 2024 | CVE

A vulnerability was found in Totolink. It has been classified as problematic. Affected is an unknown function of the file /cgi-bin/cstecgi.cgi. The manipulation leads to session expiration.

This vulnerability is traded as CVE-2024-0942. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-0942 | Totolink /cgi-bin/cstecgi.cgi session expiration

Related Posts

CVE-2024-7409 | QEMU NBD Server denial of service

CVE-2023-6163 | Themeum WP Crowdfunding Plugin up to 2.1.9 on WordPress Setting cross site scripting

CVE-2024-28809 | Infinera hiT 7300 5.60.50 Firmware Update hard-coded credentials

CVE-2024-10194 | WAVLINK WN530H4/WN530HG4/WN572HG3 up to 20221028 Front-End Authentication Page login.cgi Goto_chidx wlanUrl stack-based overflow