TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the command parameter in the function setTracerouteCfg.
References
Link | Resource |
---|---|
https://github.com/Darry-lang1/vuln/blob/main/TOTOLINK/A3700R/2/readme.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2022-08-25 07:15
Updated : 2022-08-25 22:41
NVD link : CVE-2022-36458
Mitre link : CVE-2022-36458
JSON object : View
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Products Affected
totolink
- a3700r_firmware
- a3700r