Ilovekeer

**Name of the Vulnerable Software and Affected Versions** TOTOLINK X18 version 9.1.0cu.2053 B20230309 **Description** The software contains a command injection issue through the `agentName` parameter within the `setEasyMeshAgentCfg` function. This allows for potential unauthorized command execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK X18 version V9.1.0cu.2053 B20230309 **Description** The `setEasyMeshAgentCfg` function in the TOTOLINK X18 router firmware does not properly sanitize data at the management level when processing the `mac` parameter. This can allow a remote attacker to execute arbitrary commands. The vulnerability is related to a command injection issue through the `mac` parameter within the `setEasyMeshAgentCfg` function. **Recommendations** Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disabling the `setEasyMeshAgentCfg` function until a patch is available. Restrict access to the `mac` parameter in the affected function `setEasyMeshAgentCfg()` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda W6 version 1.0.0.9(4122) **Description** A command injection issue exists in the "/goform/exeCommand" API endpoint, allowing attackers to construct `cmdinput` parameters for arbitrary command execution. **Recommendations** For Tenda W6 version 1.0.0.9(4122), consider disabling access to the "/goform/exeCommand" API endpoint until a patch is available. Restrict the use of the `cmdinput` parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda W6 version 1.0.0.9(4122) **Description** A stack overflow issue exists in the `/goform/setAutoPing` API endpoint, allowing an attacker to construct `ping1` and `ping2` parameters for a stack overflow attack, potentially leading to arbitrary code execution. **Recommendations** For Tenda W6 version 1.0.0.9(4122), as a temporary workaround, consider disabling access to the `/goform/setAutoPing` API endpoint until a patch is available. Avoid using the `ping1` and `ping2` parameters in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.