| Titel | TOTOLINK A6000R V1.0.1-B20201211.2000 Command Injection |
|---|
| Beschreibung | There is a command injection vulnerability in the apcli_cancel_wps function in the firmware version V1.0.1-B20201211.2000 of the TOTOLINK A6000R router. An attacker can use this vulnerability to remotely execute system commands without authorization, causing the server to collapse. |
|---|
| Quelle | ⚠️ https://github.com/fjl1113/cve/blob/main/totolink.md |
|---|
| Benutzer | fjl1113 (UID 81546) |
|---|
| Einreichung | 26.03.2025 13:19 (vor 1 Jahr) |
|---|
| Moderieren | 04.04.2025 09:23 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 303319 [TOTOLINK A6000R 1.0.1-B20201211.2000 mtkwifi.lua apcli_cancel_wps erweiterte Rechte] |
|---|
| Punkte | 18 |
|---|