CVE-2026-9514— Totolink CA750-PoE Setting cstecgi.cgi setNetworkDiag os command injection
Possible ATT&CK Techniques 2AI
T1059 · Command and Scripting Interpreter T1190 · Exploit Public-Facing ApplicationGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-9514
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Totolink CA750-PoE Setting cstecgi.cgi setNetworkDiag os command injection
Source: NVD (National Vulnerability Database)
Vulnerability Description
A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. Impacted is the function setNetworkDiag of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation of the argument NetDiagHost/NetDiagPingNum/NetDiagPingSize/NetDiagPingTimeOut/NetDiagTracertHop is directly passed by the attacker/so we can control the NetDiagHost/NetDiagPingNum/NetDiagPingSize/NetDiagPingTimeOut/NetDiagTracertHop leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Source: NVD (National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-9514
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-9514
请登录查看更多情报信息。
Other References for CVE-2026-9514 (1)
Same Patch Batch · Totolink · 2026-05-25 · 20 CVEs total
| CVE-2026-9457 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi UploadFirmwareFile os command injection |
| CVE-2026-9408 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setStaticDhcpRules os command injection |
| CVE-2026-9432 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injection |
| CVE-2026-9433 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setMacFilterRules os command injection |
| CVE-2026-9434 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setWiFiWpsCfg os command injection |
| CVE-2026-9435 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setQosCfg os command injection |
| CVE-2026-9436 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setL2tpServerCfg os command injection |
| CVE-2026-9454 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCertGenerationCfg os command injecti |
| CVE-2026-9455 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi UploadOpenVpnCert os command injection |
| CVE-2026-9456 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCfg os command injection |
| CVE-2026-9458 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setWanCfg os command injection |
| CVE-2026-9475 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setIpQosRules os command injection |
| CVE-2026-9476 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setPasswordCfg os command injection |
| CVE-2026-9477 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setAccessDeviceCfg os command injection |
| CVE-2026-9478 | 9.8 CRITICAL | Totolink A8000RU Web Management cstecgi.cgi setParentalRules os command injection |
| CVE-2026-9515 | 6.3 MEDIUM | Totolink CA750-PoE Setting cstecgi.cgi setUnloadUserData os command injection |
| CVE-2026-9511 | 6.3 MEDIUM | Totolink CA750-PoE Setting cstecgi.cgi setWebWlanIdx os command injection |
| CVE-2026-9512 | 6.3 MEDIUM | Totolink CA750-PoE Setting cstecgi.cgi setPasswordCfg os command injection |
| CVE-2026-9513 | 6.3 MEDIUM | Totolink CA750-PoE Setting cstecgi.cgi NTPSyncWithHost os command injection |
IV. Related Vulnerabilities
Same product: CA750-PoE
- CVE-2026-9534
Totolink CA750-PoE Setting cstecgi.cgi setWiFiWpsConfig os c - CVE-2026-9533
Totolink CA750-PoE Setting cstecgi.cgi recvUpgradeNewFw os c - CVE-2026-9532
Totolink CA750-PoE Setting cstecgi.cgi setUploadUserData os - CVE-2026-9531
Totolink CA750-PoE Setting cstecgi.cgi setUpgradeUboot os co - CVE-2026-9515
Totolink CA750-PoE Setting cstecgi.cgi setUnloadUserData os
Same vendor: Totolink
- CVE-2026-9543
Totolink N300RH Web Management cstecgi.cgi setPasswordCfg os - CVE-2026-9534
Totolink CA750-PoE Setting cstecgi.cgi setWiFiWpsConfig os c - CVE-2026-9533
Totolink CA750-PoE Setting cstecgi.cgi recvUpgradeNewFw os c - CVE-2026-9532
Totolink CA750-PoE Setting cstecgi.cgi setUploadUserData os - CVE-2026-9531
Totolink CA750-PoE Setting cstecgi.cgi setUpgradeUboot os co
Same weakness: CWE-78
- CVE-2026-45152
uniget: Command Injection in tool.Check Leading to Arbitrary - CVE-2026-9208
Tanium addressed an unauthorized code execution vulnerabilit - CVE-2026-45136
claude-code-cache-fix: Local code execution via Python tripl - CVE-2026-44712
pam_usb: Shell injection via device UUID and username in pam - CVE-2026-44709
pam_usb: PINENTRY_FALLBACK_APP environment variable allows a
V. Comments for CVE-2026-9514
No comments yet