Medium severity6.3NVD Advisory· Published May 4, 2026· Updated May 4, 2026
CVE-2026-7721
CVE-2026-7721
Description
A security vulnerability has been detected in Totolink WA300 5.2cu.7112_B20190227. This affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument hostTime leads to command injection. The attack can be executed remotely. The exploit has been disclosed publicly and may be used.
Affected products
1Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.