| Title | TOTOLINK T6 V4.1.5cu.748 Command Injection |
|---|
| Description | TOTOLINK Mesh Wifi T6 router has a command injection vulnerability. This vulnerability can be triggered through the MQTT packet handler function `ckeckKeepAlive` in file `wireless.so` .An attacker can implement a RCE attack by sending a malicious MQTT packet.
|
|---|
| Source | ⚠️ https://github.com/ElvisBlue/Public/blob/main/Vuln/7.md |
|---|
| User | ElvisBlue (UID 87432) |
|---|
| Submission | 07/20/2025 16:42 (11 months ago) |
|---|
| Moderation | 07/21/2025 11:29 (19 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 317098 [TOTOLINK T6 4.1.5cu.748 MQTT Packet wireless.so ckeckKeepAlive command injection] |
|---|
| Points | 18 |
|---|