Описание
A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. Impacted is the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument provider leads to os command injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.
EPSS
Процентиль: 90%
0.04857
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 7.3
github
9 дней назад
A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. Impacted is the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument provider leads to os command injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.
EPSS
Процентиль: 90%
0.04857
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-77