Security Advisory

CVE-2026-4497

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-20 19:02:12

Last updated 2026-03-20 21:23:40

Assigner VulDB

State PUBLISHED

Description

A vulnerability was determined in Totolink WA300 5.2cu.7112_B20190227. Affected by this issue is the function recvUpgradeNewFw of the file /cgi-bin/cstecgi.cgi. This manipulation causes os command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

← Browse all CVEs View on cve.org ↗