CVE-2024-7334 | TOTOLINK EX1200L 9.3.5u.6146_B20201023 /cgi-bin/cstecgi.cgi UploadCustomModule buffer overflow

Posted by Angelo Barbosa | Jul 31, 2024 | CVE

A vulnerability was found in TOTOLINK EX1200L 9.3.5u.6146_B20201023. It has been rated as critical. This issue affects the function UploadCustomModule of the file /cgi-bin/cstecgi.cgi. The manipulation leads to buffer overflow.

The identification of this vulnerability is CVE-2024-7334. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7334 | TOTOLINK EX1200L 9.3.5u.6146_B20201023 /cgi-bin/cstecgi.cgi UploadCustomModule buffer overflow

Related Posts

CVE-2024-8329 | Gether Technology 6SHR System sql injection

CVE-2024-5356 | anji-plus AJ-Report up to 1.4.1 testTransform;swagger-ui dynSentence sql injection

CVE-2023-50096 | STMicroelectronics STSAFE-A1xx Middleware up to 3.3.6 I2C Bus StSafeA_ReceiveBytes buffer overflow

CVE-2024-28392 | pscartabandonmentpro up to 2.0.11 on PrestaShop setEmailVisualized sql injection