kafroc

2 exploits Active since Jul 2023
CVE-2023-37172 WRITEUP CRITICAL WORKING POC
TOTOLINK A3300R V17.0.0cu.557_B20221024 - OS Command Injection via setDiagnosisCfg ip Parameter
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the ip parameter in the setDiagnosisCfg function.
CVSS 9.8
CVE-2023-37173 WRITEUP CRITICAL WORKING POC
TOTOLINK A3300R V17.0.0cu.557_B20221024 - OS Command Injection via setTracerouteCfg Command Parameter
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the command parameter in the setTracerouteCfg function.
CVSS 9.8