| Title | TOTOLINK X6000R AX3000 WiFi 6 Giga無線路由器 V9.4.0cu.1508_B20250829 Remote code execution |
|---|
| Description | An remote code execution exists in TOTOLINK IoT devices . This vulnerability is caused by insufficient filtering of parameter errors, leading to command concatenation. Attackers can exploit this vulnerability to access internal interfaces, thereby execute arbitrary code on IoT. |
|---|
| Source | ⚠️ https://www.notion.so/3250c75766a880c7b50fde0466557c5f |
|---|
| User | 2er00ne (UID 91682) |
|---|
| Submission | 03/16/2026 14:12 (25 days ago) |
|---|
| Moderation | 04/01/2026 15:56 (16 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 347489 [Totolink X6000R up to 9.4.0cu.1498_B20250826 /usr/sbin/shttpd NTPSyncWithHost host_time os command injection] |
|---|
| Points | 0 |
|---|