CVE-2024-54907 | TOTOLINK A3002R 4.0.0-B20230531.1404 /bin/boa formWsc code injection

Posted by Angelo Barbosa | Dec 26, 2024 | CVE

A vulnerability was found in TOTOLINK A3002R 4.0.0-B20230531.1404. It has been classified as critical. This affects the function formWsc of the file /bin/boa. The manipulation leads to code injection.

This vulnerability is uniquely identified as CVE-2024-54907. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-54907 | TOTOLINK A3002R 4.0.0-B20230531.1404 /bin/boa formWsc code injection

Related Posts

CVE-2024-1662 | PORTY Smart Tech Technology Joint Stock Company PowerBank Application up to 2.01 information disclosure

CVE-2024-20399 | Cisco NX-OS up to 10.4(2) CLI os command injection (cisco-sa-nxos-cmd-injection-xD9OhyOP)

CVE-2024-0220 | B&R Industrial Automation Automation Studio/Technology Guarding missing encryption

CVE-2024-37031 | Active Admin up to 3.2.1/4.0.0.beta6 on Ruby on Rails cross site scripting (GHSA-9mg6-x45v-hcfm)