CVE-2025-44838 in CPE CP900info

Zusammenfassung

von MITRE • 01.05.2025

TOTOLINK CPE CP900 V6.3c.1144_B20190715 was discovered to contain a command injection vulnerability in the setUploadUserData function via the FileName parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Zuständig

MITRE

Reservieren

22.04.2025

Veröffentlichung

01.05.2025

Moderieren

akzeptiert

Eintrag

VDB-307082

CPE

bereit

EPSS

0.00884

KEV

nein

Aktivitäten

very low

Quellen

Might our Artificial Intelligence support you?

Check our Alexa App!