VYPR
Unrated severityNVD Advisory· Published Mar 30, 2022· Updated Aug 4, 2024

CVE-2021-46007

CVE-2021-46007

Description

totolink a3100r V5.9c.4577 is vulnerable to os command injection. The backend of a page is executing the "ping" command, and the input field does not adequately filter special symbols. This can lead to command injection attacks.

Affected products

2
  • Totolink/A3100Rcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = V5.9c.4577

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.