First published: Fri Apr 07 2023(Updated: )
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the pppoeAcName parameter at /setting/setWanIeCfg.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Totolink A7100ru Firmware | =7.4cu.2313_b20191024 | |
TOTOlink A7100RU |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-26978.
The severity of CVE-2023-26978 is critical with a score of 9.8.
The command injection vulnerability occurs via the pppoeAcName parameter at /setting/setWanIeCfg.
The affected software version is TOTOlink A7100RU V7.4cu.2313_B20191024.
Yes, TOTOlink A7100RU V7.4cu.2313_B20191024 is vulnerable to the command injection vulnerability.