Unrated severityNVD Advisory· Published Mar 15, 2022· Updated Aug 3, 2024
CVE-2022-26213
CVE-2022-26213
Description
Totolink X5000R_Firmware v9.1.0u.6118_B20201102 was discovered to contain a command injection vulnerability in the function setNtpCfg, via the tz parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/pjqwudi1/my_vuln/blob/main/totolink/vuln_21/21.mdmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.