Arbitrary Command Execution Vulnerability in TOTOLINK EX200 v4.0.3c.7646_B20201211
CVE-2024-53333

Currently unrated

Key Information:

Vendor: TOTOLINK
Vendor: CVE Published:; 21 November 2024

Summary

TOTOLINK EX200 v4.0.3c.7646_B20201211 was found to contain a command insertion vulnerability in the setUssd function. This vulnerability allows an attacker to execute arbitrary commands via the "ussd" parameter.

References

https://github.com/luckysmallbird/Totolink-EX200-Vulnerab...

Timeline

Vulnerability published
Nov 21, 2024

Collectors

NVD Database