VYPR
Unrated severityNVD Advisory· Published Jan 15, 2025· Updated Mar 13, 2025

CVE-2024-57018

CVE-2024-57018

Description

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "desc" parameter in setVpnAccountCfg.

Affected products

2
  • Totolink/X5000Rcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = V9.1.0cu.2350_B20230313

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.