Page 2 of 6 results (0.003 seconds)
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-4410 – TOTOLINK EX1200L setDiagnosisCfg os command injection
https://notcve.org/view.php?id=CVE-2023-4410
A vulnerability, which was classified as critical, was found in TOTOLINK EX1200L EN_V9.3.5u.6146_B20201023. This affects the function setDiagnosisCfg. The manipulation leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://gist.github.com/dmknght/02a29e1c5ae18b45eacc2085d22068e8 https://vuldb.com/?ctiid.237513 https://vuldb.com/?id.237513 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •