Arbitrary Command Execution Vulnerability in TOTOLINK EX1800T
CVE-2024-34257

Currently unrated

Key Information:

Vendor
TOTOLINK
Status
Vendor
CVE Published:
8 May 2024

Summary

The TOTOLINK EX1800T is susceptible to a security vulnerability involving the apcliEncrypType parameter, enabling unauthorized users to execute arbitrary commands. This exploitation can lead to escalated privileges, granting attackers access to device administrative capabilities. Users of the affected version, V9.1.0cu.2112_B20220316, should apply necessary precautions and updates to mitigate any potential risks.

References

EPSS Score

75% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.