CVE-2024-41317 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_do_enr_pbc_wps ifname command injection

Posted by Angelo Barbosa | Jul 22, 2024 | CVE

A vulnerability was found in TOTOLINK A6000R 1.0.1-B20201211.2000. It has been rated as critical. This issue affects the function apcli_do_enr_pbc_wps. The manipulation of the argument ifname leads to command injection.

The identification of this vulnerability is CVE-2024-41317. The attack can only be done within the local network. There is no exploit available.

CVE-2024-41317 | TOTOLINK A6000R 1.0.1-B20201211.2000 apcli_do_enr_pbc_wps ifname command injection

Related Posts

CVE-2024-5486 | HPE ClearPass Policy Manager up to 6.11.8/6.12.1 information disclosure

CVE-2023-23019 | SourceCodester Blog Site 1.0 main.php user_add name/email cross site scripting

CVE-2024-2561 | 74CMS 3.28.0 Company Logo Index.php#sendCompanyLogo imgBase64 unrestricted upload

CVE-2023-51510 | Atlas Gondal Export Media URLs Plugin up to 1.0 on WordPress cross-site request forgery