Security Advisory

CVE-2025-44861

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-01 00:00:00
Last updated 2025-05-01 20:29:24
Assigner mitre
State PUBLISHED

Description

TOTOLINK CA300-POE V6.2c.884_B20180522 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function via the url parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.