| Titre | TOTOLINK X6000R V9.4.0cu.852_20230719 Command Injection |
|---|
| Description | TOTOLINK X6000R V9.4.0cu.852_20230719 was discovered to contain a command injection and stack overflow vulnerability via the rtLogServer parameter in the FUN_00415aa4(setSyslogCfg) function. |
|---|
| La source | ⚠️ https://github.com/BeaCox/IoT_vuln/tree/main/totolink/x6000R/setSyslogCfg_injection |
|---|
| Utilisateur | BeaCox (UID 72670) |
|---|
| Soumission | 09/08/2024 09:46 (il y a 2 ans) |
|---|
| Modérer | 17/08/2024 19:09 (8 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 275033 [TOTOLINK X6000R 9.4.0cu.852_20230719 /cgi-bin/cstecgi.cgi setSyslogCfg rtLogServer élévation de privilèges] |
|---|
| Points | 17 |
|---|