First published: Fri Feb 18 2022(Updated: )
A command injection vulnerability in the function isAssocPriDevice of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Totolink T6 Firmware | =v4.1.5cu.748_b20211015 | |
TOTOLink T6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.