Security Advisory

CVE-2026-5178

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-31 03:00:14

Last updated 2026-04-02 14:54:34

Assigner VulDB

State PUBLISHED

Description

A security vulnerability has been detected in Totolink A3300R 17.0.0cu.557_b20221024. Affected by this issue is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument vlanPriLan3 leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

← Browse all CVEs View on cve.org ↗