TotoLink Router setPortForwardRules - Command Injection

Short Info

Level

Critical

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

17 days 11 hours

Scan only one

Domain, Subdomain, IPv4

Toolbox

-

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setPortForwardRules function.

References:

https://github.com/funny-mud-peee/IoT-vuls/blob/main/TOTOLINK%20A3300R/10/TOTOlink%20A3300R%20setPortForwardRules.md

Get started to protecting your digital assets

Start trial See the plans

TotoLink Router setPortForwardRules - Command Injection

Short Info

-

Detail

Category