Vulnerability — CVE-2024-42742

CVE-2024-42742

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2024-42742
Description:: In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setUrlFilterRules. Authenticated Attackers can send malicious packet to execute arbitrary commands.
Last updated date:: 08/13/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/13/2024
Reference url to background: https://github.com/HouseFuzz/reports/blob/main/totolink/x5000r/setUrlFilterRules/setUrlFilterRules.md