Vulnerabilities > CVE-2022-27411 - Unspecified vulnerability in Totolink N600R Firmware 5.3C.5507B20171031

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

totolink

critical

NVD

Published: 2022-05-05

Updated: 2023-08-08

Summary

TOTOLINK N600R v5.3c.5507_B20171031 was discovered to contain a command injection vulnerability via the QUERY_STRING parameter in the "Main" function.

Vulnerable Configurations

Part	Description	Count
OS	Totolink Totolink N600R Firmware 5.3C.5507_B20171031	1
Hardware	Totolink Totolink N600R -	1

References

https://github.com/ejdhssh/IOT_Vul