CVE-2024-52723 [CRITICAL] :

In TOTOLINK X6000R V9.4.0cu.1041_B20240224 in the shttpd file, the Uci_Set Str function is used without strict parameter filtering. An attacker can achieve arbitrary command execution by constructing the payload.

GDATA Blog

blog
malware
threat

We keep you posted on the latest cyber threats. Learn more about what is new in the world of IT security. Knowledge is the best protection.

Visit Website

Listed: Sun Oct 20 2024