CVE-2021-43711
- Reference to the description:
- Description:
- The downloadFlile.cgi binary file in TOTOLINK EX200 V4.0.3c.7646_B20201211 has a command injection vulnerability when receiving GET parameters. The parameter name can be constructed for unauthenticated command execution.
- Last updated date:
- 01/12/2022
Reports
ACTIVELY EXPLOITED
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 08/19/2022
- Reference url to background
https://unit42.paloaltonetworks.com/recent-exploits-network-security-trends/
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 01/12/2022