Описание
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the port parameter in the setting/setOpenVpnClientCfg function.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:totolink:a7100ru_firmware:7.4cu.2313_b20191024:*:*:*:*:*:*:*
cpe:2.3:h:totolink:a7100ru:*:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.14899
Средний
9.8 Critical
CVSS3
Дефекты
CWE-78
CWE-78
Связанные уязвимости
github
около 3 лет назад
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the port parameter in the setting/setOpenVpnClientCfg function.
EPSS
Процентиль: 94%
0.14899
Средний
9.8 Critical
CVSS3
Дефекты
CWE-78
CWE-78