CVE-2026-5020 in Totolink A3600Rinformation

Résumé (Anglaise)

A vulnerability was detected in Totolink A3600R 4.1.2cu.5182_B20201102. Affected by this issue is the function setNoticeCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument NoticeUrl results in command injection. The attack may be launched remotely. The exploit is now public and may be used.

Divulgation

29/03/2026

Entrées

Publié	Base	Temp	Vulnérabilité	CWE	Prod	Exp	Con	EPSS	CTI	CVE
27/03/2026	6.3	5.7	Totolink A3600R Parameter cstecgi.cgi setNoticeCfg élévation de privilèges	77	Inconnu	Preuve de concept	Non défini	0.02949	1.20	CVE-2026-5020

Montrer plus

Description
Changements
Renseignements sur les menaces
API/JSON

◂ PrécédentAperçuSuivant ▸

Do you know our Splunk app?

Download it now for free!