CVE-2022-44844: OS Command Injection
First published: Fri Nov 25 2022(Updated: )
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the pass parameter in the setting/setOpenVpnCfg function.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Totolink A7100ru Firmware | =7.4cu.2313_b20191024 | |
| TOTOlink A7100RU |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for TOTOlink A7100RU?
The vulnerability ID for TOTOlink A7100RU is CVE-2022-44844.
What is the severity level of CVE-2022-44844?
CVE-2022-44844 has a severity level of critical (9.8 out of 10).
How does the vulnerability CVE-2022-44844 manifest?
CVE-2022-44844 manifests as a command injection vulnerability via the pass parameter in the setting/setOpenVpnCfg function.
Is TOTOlink A7100RU firmware version 7.4cu.2313_b20191024 affected?
Yes, TOTOlink A7100RU firmware version 7.4cu.2313_b20191024 is affected by CVE-2022-44844.
How can I fix the vulnerability CVE-2022-44844 in TOTOlink A7100RU?
To fix CVE-2022-44844 in TOTOlink A7100RU, it is recommended to update the firmware to a patched version provided by the vendor.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/event
- agent/type
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/totolink
- canonical/totolink a7100ru firmware
- version/totolink a7100ru firmware/7.4cu.2313_b20191024
- canonical/totolink a7100ru