CVE-2024-8077
CVSS V2 None
CVSS V3 None
Description
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been classified as critical. This affects the function setTracerouteCfg. The manipulation leads to os command injection. It is possible to initiate the attack remotely. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Overview
- CVE ID
- CVE-2024-8077
- Assigner
- VulDB
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-08-22T20:00:09.118Z
- Last Modified Date
- 2024-08-22T20:33:40.377Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://vuldb.com/?id.275559 | vdb-entry technical-description |
https://vuldb.com/?ctiid.275559 | signature permissions-required |
https://github.com/hawkteam404/RnD_Public/blob/main/TOTOLink_AC1200_T8_OsCmdI_BOF.md | related |
https://www.totolink.net/ | product |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-8077 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8077 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-08-23 13:02:48 | Added to TrackCVE |