VYPR
Unrated severityNVD Advisory· Published Nov 22, 2024· Updated Mar 13, 2025

CVE-2024-52723

CVE-2024-52723

Description

In TOTOLINK X6000R V9.4.0cu.1041_B20240224 in the shttpd file, the Uci_Set Str function is used without strict parameter filtering. An attacker can achieve arbitrary command execution by constructing the payload.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Totolink/X6000Rcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = V9.4.0cu.1041_B20240224

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.