CVE-2026-7748 in N300RHinformation

Résumé

par MITRE • 04/05/2026

A weakness has been identified in Totolink N300RH 3.2.4-B20220812. Affected by this issue is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Executing a manipulation of the argument FileName can lead to buffer overflow. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgation

04/05/2026

Modérer

accepté

Entrée

VDB-360923

CPE

prêt

CWE

CWE-120 (confirmé)

Exploitation

Télécharger

CVSS

8.8 (VulDB)

EPSS

0.00086

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7748
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7748
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7748/

◂ Précédent Aperçu Suivant ▸

Do you need the next level of professionalism?

Upgrade your account now!