CVE-2025-44838 in CPE CP900Информация

Сводка

по MITRE • 01.05.2025

TOTOLINK CPE CP900 V6.3c.1144_B20190715 was discovered to contain a command injection vulnerability in the setUploadUserData function via the FileName parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Ответственный

MITRE

Резервировать

22.04.2025

Раскрытие

01.05.2025

Модерация

принято

Вход

VDB-307082

EPSS

0.00884

KEV

Нет

Деятельности

Очень низкий

Источники

Do you want to use VulDB in your project?

Use the official API to access entries easily!