Elvisblue

**Name of the Vulnerable Software and Affected Versions** TOTOLINK T6 version 4.1.5cu.748 **Description** A critical issue exists in the MQTT Packet Handler component of the software. Specifically, the `checkKeepAlive` function within the `wireless.so` file is susceptible to command injection. This allows for remote execution of commands through manipulation of the function. The exploit for this issue has been publicly disclosed and may be actively exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 Description: A critical issue exists in TOTOLINK T6 version 4.1.5cu.748. The vulnerability is located within the `CloudSrvVersionCheck` function of the `/cgi-bin/cstecgi.cgi` file, part of the HTTP POST Request Handler component. Manipulation of the `ip` argument allows for command injection. The attack can be initiated remotely. The exploit has been publicly disclosed. Recommendations: TOTOLINK T6 version 4.1.5cu.748: As a temporary workaround, consider restricting access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 Description: A critical issue exists in the HTTP POST Request Handler component of the software. The `delDevice` function within the `/cgi-bin/cstecgi.cgi` file is susceptible to command injection through manipulation of the `ipAddr` argument. This allows for remote attacks. The exploit for this issue has been publicly disclosed. Recommendations: Apply a software update that addresses the vulnerability in the `delDevice` function of the `/cgi-bin/cstecgi.cgi` file.

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 Description: A critical vulnerability exists in the HTTP POST Request Handler component of TOTOLINK T6. The vulnerability is due to command injection in the `clearPairCfg` function within the `/cgi-bin/cstecgi.cgi` file. The `ip` argument can be manipulated to execute arbitrary commands remotely. The exploit for this issue has been publicly disclosed. Recommendations: Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the `/cgi-bin/cstecgi.cgi` file. Avoid using the `ip` parameter in the affected API endpoint `/cgi-bin/cstecgi.cgi` until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.5cu.748 B20211015 Description: A critical vulnerability has been identified in TOTOLINK T6. The issue resides in the `setWiFiAclRules` function within the `/cgi-bin/cstecgi.cgi` file of the HTTP POST Request Handler component. Manipulation of the `mac` argument leads to a buffer overflow, and the attack can be launched remotely. The exploit for this issue has been publicly disclosed. Recommendations: TOTOLINK T6 version 4.1.5cu.748 B20211015: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK T6 version 4.1.5cu.748 B20211015 **Description** A critical vulnerability exists in the TOTOLINK T6 router. The issue is a command injection vulnerability located in the `setDiagnosisCfg` function within the `/cgi-bin/cstecgi.cgi` file of the HTTP POST Request Handler component. Manipulation of the `ip` argument allows for remote command execution. The exploit for this vulnerability has been publicly disclosed. **Recommendations** TOTOLINK T6 version 4.1.5cu.748 B20211015: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK T6 version 4.1.5cu.748 B20211015 **Description** A critical vulnerability exists in the HTTP POST Request Handler component of the affected software. The vulnerability is located in the `setTracerouteCfg` function within the `/cgi-bin/cstecgi.cgi` file. Manipulation of the `command` argument allows for command injection, and the attack can be initiated remotely. The exploit for this vulnerability has been publicly disclosed and may be used. **Recommendations** TOTOLINK T6 version 4.1.5cu.748 B20211015: At the moment, there is no information about a newer version that contains a fix for this vulnerability.