Security Advisory

CVE-2026-9532

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-05-26 05:00:14

Last updated 2026-05-26 12:35:34

Assigner VulDB

State PUBLISHED

Description

A security vulnerability has been detected in Totolink CA750-PoE 6.2c.510. The affected element is the function setUploadUserData of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argument FileName leads to os command injection. The attack may be performed from remote. The exploit has been disclosed publicly and may be used.

← Browse all CVEs View on cve.org ↗