TOTOLINK A3300R 17.0.0cu.557_B20221024 contains a command...
Critical severity
Unreviewed
Published
Oct 31, 2023
to the GitHub Advisory Database
•
Updated Nov 8, 2023
Description
Published by the National Vulnerability Database
Oct 31, 2023
Published to the GitHub Advisory Database
Oct 31, 2023
Last updated
Nov 8, 2023
TOTOLINK A3300R 17.0.0cu.557_B20221024 contains a command injection via the file_name parameter in the UploadFirmwareFile function.
References