Medium severity4.3NVD Advisory· Published Jun 8, 2026

CVE-2026-11554

Description

A vulnerability was determined in TOTOLINK CP450 4.1.0cu.747. This vulnerability affects unknown code of the file /etc/vsftpd.conf of the component vsftpd. This manipulation causes least privilege violation. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized.

Affected products

Totolink/CP450llm-fuzzy
Range: = 4.1.0cu.747

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

vuldb.com/cve/CVE-2026-11554nvd
vuldb.com/submit/834821nvd
vuldb.com/vuln/369164nvd
vuldb.com/vuln/369164/ctinvd
www.notion.so/TOTOLink-CP450-V4-1-0cu-747-3671f5ba989080c3b39ac3984d2ff44dnvd
www.totolink.netnvd

News mentions

No linked articles in our index yet.

cvss	0.280
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000