OS Command Injection in TOTOLINK EX1800T Product by TOTOLINK
CVE-2025-2096

5.3MEDIUM

Key Information:

Vendor: Totolink
Status: Ex1800t
Vendor: CVE Published:; 7 March 2025

Badges

👾 Exploit Exists

What is CVE-2025-2096?

A vulnerability exists in the TOTOLINK EX1800T router that allows for OS command injection via the setRebootScheCfg function in the /cgi-bin/cstecgi.cgi file. Attackers can exploit this vulnerability by manipulating parameters such as mode, week, minute, and recHour, enabling them to execute arbitrary system commands remotely. The issue has been publicly disclosed, emphasizing the importance of immediate action to mitigate potential exploitation.

Affected Version(s)

EX1800T 9.1.0cu.2112_B20220316

References

https://vuldb.com/?id.298954

vdb-entrytechnical-description

https://vuldb.com/?ctiid.298954

signaturepermissions-required

https://vuldb.com/?submit.515322

third-party-advisory

CVSS V4

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Mar 7, 2025
Vulnerability published
Mar 7, 2025
Vulnerability Reserved
Mar 7, 2025

Credit

selph (VulDB User)

Totolink