CVE-2024-23058 | Totolink A3300R 17.0.0cu.557_B20221024 setTr069Cfg pass command injection

Posted by Angelo Barbosa | Jan 11, 2024 | CVE

A vulnerability classified as critical has been found in Totolink A3300R 17.0.0cu.557_B20221024. This affects the function setTr069Cfg. The manipulation of the argument pass leads to command injection.

This vulnerability is uniquely identified as CVE-2024-23058. The attack can only be done within the local network. There is no exploit available.

CVE-2024-23058 | Totolink A3300R 17.0.0cu.557_B20221024 setTr069Cfg pass command injection

Related Posts

CVE-2024-28805 | Italtel i-MCS NFV 12.1.0-20211215 access control

CVE-2024-39840 | Factorio 0.15.31 Custom Map Privilege Escalation

CVE-2024-7980 | Google Chrome up to 127.0.6533.99 Installer out-of-bounds

CVE-2024-49240 | Agustin Berasategui AB Categories Search Widget Plugin up to 0.2.5 on WordPress cross site scripting