High severity8.8NVD Advisory· Published Jun 20, 2024· Updated Jul 5, 2026
CVE-2024-37626
CVE-2024-37626
Description
A command injection issue in TOTOLINK A6000R V1.0.1-B20201211.2000 firmware allows a remote attacker to execute arbitrary code via the iface parameter in the vif_enable function.
Affected products
2Patches
Vulnerability mechanics
References
3- github.com/lakemoon602/vuln/blob/main/totolink/TOTOlink%20A6000R%20vif_enable.mdnvdExploitThird Party Advisory
- a6000r.comnvdURL Repurposed
- www.totolink.netnvdProduct
News mentions
0No linked articles in our index yet.