CVE-2025-6619 in CA300-PoEالمعلومات

الملخص

بحسب MITRE • 25/06/2025

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been declared as critical. Affected by this vulnerability is the function setUpgradeFW of the file upgrade.so. The manipulation of the argument FileName leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

مسؤول

VulDB

إفشاء

25/06/2025

الاعتدال

تمت الموافقة

إدخال

VDB-313837

استغلال

تحميل

EPSS

0.02687

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you know our Splunk app?

Download it now for free!