CVE-2026-7240 in A8000RUinformación

Resumen

por MITRE • 2026-04-28

A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. This vulnerability affects the function setVpnAccountCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument User leads to os command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgación

2026-04-28

Moderación

aceptado

Artículo

VDB-359847

CPE

listo

CWE

CWE-78 (confirmado)

Explotación

Descargar

CVSS

9.8 (VulDB)

EPSS

0.01221

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7240
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7240
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7240/

◂ Anterior Visión De Conjunto Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!