CVE-2026-4497 in WA300info

Zusammenfassung

von MITRE • 20.03.2026

A vulnerability was determined in Totolink WA300 5.2cu.7112_B20190227. Affected by this issue is the function recvUpgradeNewFw of the file /cgi-bin/cstecgi.cgi. This manipulation causes os command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

20.03.2026

Moderieren

akzeptiert

Eintrag

VDB-352046

CPE

bereit

CWE

CWE-78 (bestätigt)

Exploit

Download

CVSS

7.3 (CNA)

EPSS

0.00767

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-4497
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-4497
CVE Details	https://www.cvedetails.com/cve/CVE-2026-4497/

◂ Zurück Übersicht Weiter ▸

Do you need the next level of professionalism?

Upgrade your account now!