Ltzhust

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** An OS command injection flaw exists in the Web Management Interface. A remote attacker can execute this by manipulating the `servername` argument within the `setOpenVpnCertGenerationCfg()` function of the '/cgi-bin/cstecgi.cgi' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** An OS command injection issue exists in the Web Management Interface. The problem occurs within the `setIpQosRules()` function of the '/cgi-bin/cstecgi.cgi' endpoint. Remote exploitation is possible by manipulating the `Comment` argument, which allows the execution of arbitrary operating system commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** OS command injection is possible via the Web Management Interface. The issue exists in the `UploadFirmwareFile()` function within the '/cgi-bin/cstecgi.cgi' endpoint, where improper manipulation of the `FileName` argument allows for remote attack execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** OS command injection is possible in the Web Management Interface via the `setOpenVpnCfg()` function located in the '/cgi-bin/cstecgi.cgi' endpoint. This issue occurs when the `enabled` argument is manipulated, allowing a remote attacker to execute arbitrary operating system commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** An OS command injection issue exists in the Web Management Interface. A remote attacker can exploit this by manipulating arguments passed to the `setWanCfg()` function within the '/cgi-bin/cstecgi.cgi' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** An OS command injection issue exists in the Web Management Interface within the `UploadOpenVpnCert()` function of the '/cgi-bin/cstecgi.cgi' endpoint. This occurs due to improper manipulation of the `FileName` argument, allowing for remote exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** An OS command injection issue exists in the CGI Handler component. A remote attacker can manipulate the `enable` argument within the `setPptpServerCfg()` function of the '/cgi-bin/cstecgi.cgi' endpoint to execute arbitrary operating system commands. **Recommendations** Update Totolink A8000RU version 7.1cu.643 b20200521 to a patched version. As a temporary workaround, restrict access to the '/cgi-bin/cstecgi.cgi' endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** OS command injection can be triggered remotely via the CGI Handler component. The issue exists in the `setUrlFilterRules()` function within the '/cgi-bin/cstecgi.cgi' endpoint, where improper manipulation of the `enable` argument allows for the execution of arbitrary operating system commands. **Recommendations** As a temporary workaround, consider restricting access to the '/cgi-bin/cstecgi.cgi' endpoint or disabling the `setUrlFilterRules()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda F456 version 1.0.0.5 **Description** A buffer overflow can be triggered remotely in the httpd component. The issue exists within the `fromDhcpListClient()` function located in the '/goform/DhcpListClient' file, where improper manipulation of the `page` argument allows for the overflow. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the '/goform/DhcpListClient' endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Totolink A8000RU version 7.1cu.643 b20200521 **Description** An OS command injection issue exists in the CGI Handler component. A remote attacker can exploit this by manipulating the `wscDisabled` argument within the `setWiFiWpsStart()` function of the '/cgi-bin/cstecgi.cgi' endpoint. **Recommendations** As a temporary workaround, consider restricting access to the '/cgi-bin/cstecgi.cgi' endpoint or disabling the `setWiFiWpsStart()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda F456 version 1.0.0.5 **Description** A buffer overflow can be triggered remotely in the httpd component. The issue exists within the `fromwebExcptypemanFilter()` function located in the '/goform/webExcptypemanFilter' file, where improper manipulation of the `page` argument leads to the overflow. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the '/goform/webExcptypemanFilter' endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda F456 version 1.0.0.5 **Description** A buffer overflow exists in the httpd component. The issue occurs within the `fromSetIpBind()` function of the '/goform/SetIpBind' endpoint when the `page` argument is manipulated. This flaw allows for remote attacks. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda F456 version 1.0.0.5 **Description** A buffer overflow can be triggered remotely within the httpd component. The issue exists in the `fromPPTPUserSetting()` function located in the '/goform/PPTPUserSetting' endpoint, where manipulation of the `delno` argument leads to the overflow. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda F456 version 1.0.0.5 **Description** A buffer overflow exists in the httpd component, specifically within the `fromAdvSetWan()` function of the '/goform/AdvSetWan' endpoint. This issue allows a remote attacker to trigger the overflow by manipulating the `wanmode` argument. This endpoint is part of the WAN configuration handlers, which are critical as they are closely integrated with core connectivity logic. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the '/goform/AdvSetWan' endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda F456 version 1.0.0.5 **Description** A buffer overflow can be triggered remotely through the manipulation of the `page` argument within the `frmL7ImForm()` function located in the '/goform/L7Im' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda F456 version 1.0.0.5 **Description** A buffer overflow occurs in the `httpd` component within the `fromSafeUrlFilter()` function of the `/goform/SafeUrlFilter` file. This issue allows a remote attacker to trigger the overflow by manipulating the `page` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A weakness exists in the Totolink A7100RU version 7.4cu.2313 b20191024. The `setMiniuiHomeInfoShow` function within the `/cgi-bin/cstecgi.cgi` file of the CGI Handler component is affected. Manipulation of the `lan info` argument can lead to operating system command injection. This attack can be performed remotely. A public exploit is available. Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the `/cgi-bin/cstecgi.cgi` file.

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A security flaw exists in the CGI Handler component of Totolink A7100RU version 7.4cu.2313 b20191024. Manipulation of the `telnet enabled` argument within the `setTelnetCfg` function in the /cgi-bin/cstecgi.cgi file can lead to os command injection. This allows for remote execution of commands. A public exploit is available. Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the /cgi-bin/cstecgi.cgi file.

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A security issue exists in the Totolink A7100RU router. The `setAdvancedInfoShow` function within the CGI Handler component, specifically in the file `/cgi-bin/cstecgi.cgi`, is susceptible to OS command injection. This occurs through manipulation of the `tty server` argument. The attack can be initiated remotely. The exploit has been publicly disclosed. Recommendations For Totolink A7100RU version 7.4cu.2313 b20191024, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A flaw exists in the CGI Handler component of the Totolink A7100RU. Specifically, the `setWiFiGuestCfg` function within the `/cgi-bin/cstecgi.cgi` file is susceptible to OS command injection through manipulation of the `wifiOff` argument. This allows for remote execution of commands on the affected system. Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the `/cgi-bin/cstecgi.cgi` file.