Medium severity4.3NVD Advisory· Published Jun 8, 2026

CVE-2026-11494

Description

A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.

Affected products

Totolink/AC1200 T8llm-fuzzy
Range: 4.1.5cu.8611

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

vuldb.com/cve/CVE-2026-11494nvd
vuldb.com/submit/834819nvd
vuldb.com/vuln/369114nvd
vuldb.com/vuln/369114/ctinvd
www.notion.so/TOTOLink-AC1200T8-V4-1-5cu-8611-3671f5ba989080a6aa03e6adbdd1d104nvd
www.totolink.netnvd

News mentions

No linked articles in our index yet.

cvss	0.280
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000