CVE-2026-5103 in A3300R
Resumen (Inglés)
A weakness has been identified in Totolink A3300R 17.0.0cu.557_b20221024. This issue affects the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument enable causes command injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Divulgación
2026-03-30
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 354128 | Totolink A3300R cstecgi.cgi setUPnPCfg escalada de privilegios | 77 | Prueba de concepto | No está definido | CVE-2026-5103 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV