Security Advisory

CVE-2024-52723

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-22 00:00:00

Last updated 2025-03-13 17:36:37

Assigner mitre

State PUBLISHED

Description

In TOTOLINK X6000R V9.4.0cu.1041_B20240224 in the shttpd file, the Uci_Set Str function is used without strict parameter filtering. An attacker can achieve arbitrary command execution by constructing the payload.

← Browse all CVEs View on cve.org ↗