| Title | TOTOLINK T6 V4.1.5cu.748_B20211015 Missing Authentication |
|---|
| Description | setTelnetCfg can be called to enable telnet service without authen. Attacker can archive root shell with it. |
|---|
| Source | ⚠️ https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/5.md |
|---|
| User | reisen_1943 (UID 76990) |
|---|
| Submission | 07/17/2025 11:06 AM (7 months ago) |
|---|
| Moderation | 07/19/2025 06:09 AM (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 316975 [TOTOLINK T6 4.1.5cu.748_B20211015 Telnet Service /cgi-bin/cstecgi.cgi setTelnetCfg telnet_enabled missing authentication] |
|---|
| Points | 14 |
|---|