Command Injection Vulnerability in TOTOLINK's A6000R V1.0.1-B20201211.2000
CVE-2024-41316

Currently unrated

Key Information:

Vendor: TOTOLINK
Status: A6000r Firmware
Vendor: CVE Published:; 22 July 2024

Summary

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_cancel_wps function.

References

https://github.com/yanggao017/vuln/blob/main/TOTOLINK/A60...

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 22, 2024