CVE-2026-9435 in A8000RUinfo

Zusammenfassung

von MITRE • 26.05.2026

A vulnerability was detected in Totolink A8000RU 7.1cu.643_b20200521. The affected element is the function setQosCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument enable results in os command injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

26.05.2026

Moderieren

akzeptiert

Eintrag

VDB-365416

CPE

bereit

CWE

CWE-78 (bestätigt)

Exploit

Download

CVSS

9.8 (VulDB)

EPSS

0.01254

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-9435
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-9435
CVE Details	https://www.cvedetails.com/cve/CVE-2026-9435/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!