CVE-2024-32352
8.8HIGHTOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "ipsecL2tpEnable" parameter in the "cstecgi.cgi" binary.
Publicado: 5/14/2024Actualizado: 4/4/2025
Descripción
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "ipsecL2tpEnable" parameter in the "cstecgi.cgi" binary.
Análisis IAImpulsado por IA
Productos Afectados
totolinkx5000r_firmware
9.1.0cu.2350_b20230313
totolinkx5000r
-
Referencias
- https://github.com/1s1and123/Vulnerabilities/blob/main/device/ToToLink/X5000R/TOTOLink_X5000R_RCE.mdExploitThird Party Advisory
- https://www.totolink.net/Product
- https://github.com/1s1and123/Vulnerabilities/blob/main/device/ToToLink/X5000R/TOTOLink_X5000R_RCE.mdExploitThird Party Advisory
- https://www.totolink.net/Product