| Название | TOTOLINK X5000R V9.1.0cu.2415_B20250515 Command Injection |
|---|
| Описание | A vulnerability was determined in TOTOLINK X5000R V9.1.0cu.2415_B20250515. This impacts the function sub_410C34 of the file cstecgi.cgi. This manipulation of the argument pid causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. |
|---|
| Источник | ⚠️ https://github.com/Axelioc/CVE/blob/main/TOTOLINK/X5000R/sub_410C34/sub_410C34.md |
|---|
| Пользователь | Haaalion (UID 89556) |
|---|
| Представление | 28.08.2025 10:14 (8 месяцы назад) |
|---|
| Модерация | 03.09.2025 13:33 (6 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 322336 [TOTOLINK X5000R 9.1.0cu.2415_B20250515 /cgi-bin/cstecgi.cgi sub_410C34 pid эскалация привилегий] |
|---|
| Баллы | 18 |
|---|