Security Advisory

CVE-2026-2167

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-08 17:02:10

Last updated 2026-02-23 09:45:27

Assigner VulDB

State PUBLISHED

Description

A vulnerability was detected in Totolink WA300 5.2cu.7112_B20190227. The impacted element is the function setAPNetwork of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument Ipaddr results in os command injection. The attack may be performed from remote. The exploit is now public and may be used.

← Browse all CVEs View on cve.org ↗