Command Injection Vulnerability in TOTOLINK's A6000R V1.0.1-B20201211.2000
CVE-2024-41316

Currently unrated

Key Information:

Vendor: TOTOLINK
Status: A6000r Firmware
Vendor: CVE Published:; 22 July 2024

What is CVE-2024-41316?

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_cancel_wps function.

References

https://github.com/yanggao017/vuln/blob/main/TOTOLINK/A60...

EPSS Score

12% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 22, 2024