CVE-2024-42739

Published: 2024-08-13T14:15Z

Last Modified: 2024-08-14T15:35Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setAccessDeviceCfg. Authenticated Attackers can send malicious packet to execute arbitrary commands. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt