logo
Vulnerability feed
Contributors
About
Blog
CONTRIBUTE

Vulnerability

warn

CVE-2024-42739

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2024-42739

Description:
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setAccessDeviceCfg. Authenticated Attackers can send malicious packet to execute arbitrary commands.
Last updated date:
08/14/2024
Type:
exploit
Confidence:
HIGH
Date of publishing:
08/13/2024
Reference url to background

https://github.com/HouseFuzz/reports/blob/main/totolink/x5000r/setAccessDeviceCfg/setAccessDeviceCfg.md

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2025

Privacy Policy