Selph

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1800T versions 9.1.0cu.2112 B20220316 and earlier **Description** A critical issue has been found in the TOTOLINK EX1800T, affecting the function `setPasswordCfg` of the file `/cgi-bin/cstecgi.cgi`. The manipulation of the argument `admpass` leads to a stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For TOTOLINK EX1800T versions 9.1.0cu.2112 B20220316 and earlier, as a temporary workaround, consider disabling the `setPasswordCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `admpass` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1800T versions 9.1.0cu.2112 B20220316 and earlier **Description** A critical issue affects the function `setWiFiExtenderConfig` of the file `/cgi-bin/cstecgi.cgi`. The manipulation of the argument `apcliSsid` leads to a stack-based buffer overflow. This can be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For TOTOLINK EX1800T versions 9.1.0cu.2112 B20220316 and earlier, as a temporary workaround, consider disabling the `setWiFiExtenderConfig` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `apcliSsid` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1800T version 9.1.0cu.2112 B20220316 **Description** A critical issue was found in the setWiFiExtenderConfig function of the /cgi-bin/cstecgi.cgi file. The manipulation of the `apcliKey/key` argument leads to os command injection. This issue can be exploited remotely. **Recommendations** For TOTOLINK EX1800T version 9.1.0cu.2112 B20220316, as a temporary workaround, consider restricting access to the `setWiFiExtenderConfig` function in the /cgi-bin/cstecgi.cgi file to minimize the risk of exploitation. Avoid using the `apcliKey/key` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1800T version 9.1.0cu.2112 B20220316 **Description** A critical vulnerability has been found in TOTOLINK EX1800T. This affects the function `setDmzCfg` of the file `/cgi-bin/cstecgi.cgi`. The manipulation of the argument `ip` leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the `setDmzCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `ip` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1800T version 9.1.0cu.2112 B20220316 **Description** A critical vulnerability was found in TOTOLINK EX1800T, affecting the function `setRebootScheCfg` of the file `/cgi-bin/cstecgi.cgi`. The manipulation of the arguments `mode`, `week`, `minute`, and `recHour` leads to OS command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the `setRebootScheCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the arguments `mode`, `week`, `minute`, and `recHour` in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1800T version 9.1.0cu.2112 B20220316 **Description** A critical issue has been found in TOTOLINK EX1800T, affecting the function `setRptWizardCfg` of the file `/cgi-bin/cstecgi.cgi`. The manipulation of the argument `loginpass` leads to a stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the `setRptWizardCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `loginpass` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.