| Titel | TOTOLINK A3002RU V3/A3002R_V4 V3.0.0-B20230809.1615 Command execution |
|---|
| Beschreibung | A serious command execution vulnerability was discovered in TOTOLINK A3002RU V3 and A3002R_V4. The vulnerability can be triggered by the route /boafrm/formMapDelDevice. The attacker can achieve command execution by sending HTTP POST requests. |
|---|
| Quelle | ⚠️ https://github.com/CH13hh/tmp_store_cc/blob/main/tt/ta/2.md |
|---|
| Benutzer | BabyShark (UID 83915) |
|---|
| Einreichung | 03.05.2025 10:21 (vor 12 Monaten) |
|---|
| Moderieren | 15.05.2025 09:23 (12 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 309031 [TOTOLINK A3002R/A3002RU 3.0.0-B20230809.1615 HTTP POST Request /boafrm/formMapDelDevice macstr erweiterte Rechte] |
|---|
| Punkte | 17 |
|---|