| Title | TOTOLINK A6000R V1.0.1-B20201211.2000 Command Injection |
|---|
| Description | There is a command injection vulnerability in the apcli_cancel_wps function in the firmware version V1.0.1-B20201211.2000 of the TOTOLINK A6000R router. An attacker can use this vulnerability to remotely execute system commands without authorization, causing the server to collapse. |
|---|
| Source | ⚠️ https://github.com/fjl1113/cve/blob/main/totolink.md |
|---|
| User | fjl1113 (UID 81546) |
|---|
| Submission | 03/26/2025 13:19 (1 Year ago) |
|---|
| Moderation | 04/04/2025 09:23 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 303319 [TOTOLINK A6000R 1.0.1-B20201211.2000 mtkwifi.lua apcli_cancel_wps command injection] |
|---|
| Points | 18 |
|---|