CVE-2023-29802
published 2023-04-14CVE-2023-29802: TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the ip parameter in the setDiagnosisCfg function.
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the ip parameter in the setDiagnosisCfg function.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| totolink | x18_firmware | — | — |
| totolink | x18_firmware | — | — |