Unrated severityNVD Advisory· Published Nov 27, 2018· Updated Aug 5, 2024
CVE-2018-13307
CVE-2018-13307
Description
System command injection in fromNtp in TOTOLINK A3002RU version 1.0.8 allows attackers to execute system commands via the "ntpServerIp2" POST parameter. Certain payloads cause the device to become permanently inoperable.
Affected products
1Patches
Vulnerability mechanics
References
1- blog.securityevaluators.com/new-vulnerabilities-in-totolink-a3002ru-d6f42a081154mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.