Command Injection Vulnerability in Totolink EX300_v2 by Totolink
CVE-2021-43664
8.1HIGH
What is CVE-2021-43664?
The Totolink EX300_v2 device, specifically version V4.0.3c.140_B20210429, contains a command injection vulnerability through the 'process forceugpo' component. This vulnerability allows an attacker to execute arbitrary commands on the affected device, potentially leading to unauthorized access and exploitation. Network administrators should assess their devices against this vulnerability and implement necessary patches or mitigations to ensure device integrity and network security.