Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function setUpgradeFW, via the FileName parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款TotoLink产品操作系统命令注入漏洞
Vulnerability Description
TOTOLINK A3100R等都是中国吉翁电子(TOTOLINK)公司的产品。TOTOLINK A3100R是一系列无线路由器。TOTOLINK A950RG是一款超世代 Giga 无线路由器。TOTOLINK A830R是一款无线双频路由器。 TotoLink A830R V5.9C.4729_B20191112,A3100R V4.1.2CU.5050_B20200504,A950RG V4.1.2CU.5161_B20200903,A800R V4.1.2CU.5137_B20200730,A30
CVSS Information
N/A
Vulnerability Type
N/A