CVE-2026-7138 in A8000RUthông tin

Tóm tắt

Bởi MITRE • 27/04/2026

A vulnerability was detected in Totolink A8000RU 7.1cu.643_b20200521. This vulnerability affects the function setNtpCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument tz results in os command injection. The attack can be executed remotely. The exploit is now public and may be used.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

VulDB

Tiết lộ

27/04/2026

Kiểm duyệt

được chấp nhận

mục

VDB-359737

CPE

sẵn sàng

CWE

CWE-78 (Đã xác nhận)

Khai thác

Tải xuống

CVSS

9.8 (VulDB)

EPSS

0.01221

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7138
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7138
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7138/

◂ Trước Tổng Quan Tiếp theo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!