Command Injection Vulnerability in TOTOLink A3600R Router
CVE-2022-25078
9.8CRITICAL
What is CVE-2022-25078?
The TOTOLink A3600R router has a security flaw where a command injection vulnerability exists in the 'Main' function. Attackers can exploit this flaw to execute unauthorized commands through the QUERY_STRING parameter, potentially compromising the device's security and integrity.