CVE-2024-41317 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_do_enr_pbc_wps ifname command injection

Posted by Angelo Barbosa | Jul 22, 2024 | CVE

A vulnerability was found in TOTOLINK A6000R 1.0.1-B20201211.2000. It has been rated as critical. This issue affects the function apcli_do_enr_pbc_wps. The manipulation of the argument ifname leads to command injection.

The identification of this vulnerability is CVE-2024-41317. The attack can only be done within the local network. There is no exploit available.

CVE-2024-41317 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_do_enr_pbc_wps ifname command injection

Related Posts

CVE-2024-28120 | Exafunction codeium-chrome up to 1.2.52 Service Worker access control (GHSA-8c7j-2h97-q63p)

CVE-2021-47084 | Linux Kernel up to 5.15.11 hamradio unregister_netdev use after free

CVE-2023-6581 | D-Link DAR-7000 up to 20231126 /user/inc/workidajax.php id sql injection

CVE-2024-23614 | Symantec Messaging Gateway up to 9.5 memory corruption