CVE-2024-41317 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_do_enr_pbc_wps ifname command injection

Posted by Angelo Barbosa | Jul 22, 2024 | CVE

A vulnerability was found in TOTOLINK A6000R 1.0.1-B20201211.2000. It has been rated as critical. This issue affects the function apcli_do_enr_pbc_wps. The manipulation of the argument ifname leads to command injection.

The identification of this vulnerability is CVE-2024-41317. The attack can only be done within the local network. There is no exploit available.

CVE-2024-41317 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_do_enr_pbc_wps ifname command injection

Related Posts

CVE-2023-52132 | Jewel Theme WP Adminify Plugin up to 3.1.6 on WordPress sql injection

CVE-2024-31203 | Plug&Track Thermoscan IP 20211103 wd210std.dll stack-based overflow

CVE-2024-32133 | Michael Schuppenies EZ Form Calculator Plugin up to 2.14.0.3 on WordPress cross site scripting

CVE-2023-49489 | kalcaddle KodeExplorer 4.51 config/i18n/en/main.php APP_HOST cross site scripting