CVSS: 9.8EPSS: 44%CPEs: 2EXPL: 1CVE-2022-48124
https://notcve.org/view.php?id=CVE-2022-48124
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the FileName parameter in the setting/setOpenVpnCertGenerationCfg function. • https://github.com/Am1ngl/ttt/tree/main/14 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.8EPSS: 44%CPEs: 2EXPL: 1CVE-2022-48122
https://notcve.org/view.php?id=CVE-2022-48122
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the dayvalid parameter in the setting/delStaticDhcpRules function. • https://github.com/Am1ngl/ttt/tree/main/17 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.8EPSS: 44%CPEs: 2EXPL: 1CVE-2022-47853
https://notcve.org/view.php?id=CVE-2022-47853
TOTOlink A7100RU V7.4cu.2313_B20191024 is vulnerable to Command Injection Vulnerability in the httpd service. An attacker can obtain a stable root shell through a specially constructed payload. • https://github.com/Am1ngl/ttt/tree/main/16 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.8EPSS: 44%CPEs: 2EXPL: 1CVE-2022-46631
https://notcve.org/view.php?id=CVE-2022-46631
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the wscDisabled parameter in the setting/setWiFiSignalCfg function. Se descubrió que TOTOlink A7100RU V7.4cu.2313_B20191024 contiene una vulnerabilidad de inyección de comandos a través del parámetro wscDisabled en la función settings/setWiFiSignalCfg. • https://github.com/EPhaha/IOT_vuln/tree/main/TOTOLink/A7100RU/6 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.8EPSS: 44%CPEs: 2EXPL: 1CVE-2022-46634
https://notcve.org/view.php?id=CVE-2022-46634
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the wscDisabled parameter in the setting/setWiFiWpsCfg function. Se descubrió que TOTOlink A7100RU V7.4cu.2313_B20191024 contiene una vulnerabilidad de inyección de comandos a través del parámetro wscDisabled en la función setting/setWiFiWpsCfg. • https://github.com/EPhaha/IOT_vuln/tree/main/TOTOLink/A7100RU/7 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •