TotoLink Router setPortForwardRules - Command Injection

Short Info


Level

Critical

Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

17 days 11 hours

Scan only one

Domain, Subdomain, IPv4

Toolbox

-

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setPortForwardRules function.


References:
Get started to protecting your digital assets