CVE-2022-48125

Description

TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the password parameter in the setting/setOpenVpnCertGenerationCfg function.

Related CPE's

o totolink a7100ru_firmware 7.4cu.2313_b20191024 *******

h totolink a7100ru -*******

References

https://github.com/Am1ngl/ttt/tree/main/13

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io