TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection vulnerability via the 'port' parameter in the setSSServer function at /cgi-bin/cstecgi.cgi.
The vulnerability (CWE-77) consists of the lack of proper validation and sanitization of input data passed through the 'port' parameter to the setSSServer function handled by the /cgi-bin/cstecgi.cgi endpoint. An attacker can inject malicious system commands into this parameter, which will be executed directly by the device's operating system. The attack requires no authentication or user interaction and can be performed remotely over the network.
Successful exploitation of this vulnerability allows an attacker to gain complete control over the device — execute arbitrary system commands, read and modify configuration, and potentially use the router as an entry point to the internal network.
Apply patches available from the manufacturer according to the references. Until firmware is updated, it is recommended to restrict access to the device management interface exclusively to trusted IP addresses and block access to the administrative panel from the WAN side.
TOTOLINK X5000R with firmware version V9.1.0cu.2350_B20230313
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTotolink X5000r
HWTotolinkwszystkie wersjeTotolink X5000r Firmware
OSTotolink9.1.0cu.2350_b20230313
Related vulnerabilities
TOTOLINK X5000R — argument injection w setDiagnosisCfg prowadzący do DoS
Totolink X5000R: auth bypass umożliwiający nieautoryzowany dostęp root przez Telnet
Buffer Overflow w TOTOLINK X5000R i A7000R — RCE przez pole IP
TOTOLINK X5000R V9.1.0u.6118_B20201102 and TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a ...
TOTOLINK X5000R V9.1.0u.6118_B20201102 and TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a ...