CVE-2024-7336

Name of the Vulnerable Software and Affected Versions TOTOLINK EX200 version 4.0.3c.7646 B20201211

Description A critical issue was found in the loginauth function of the /cgi-bin/cstecgi.cgi file, caused by a buffer overflow when processing the http host parameter. This allows a remote attacker to impact the confidentiality, integrity, and availability of protected information by sending a specially crafted POST request to the /cgi-bin/cstecgi.cgi API endpoint. The exploit has been disclosed publicly.

Recommendations For TOTOLINK EX200 version 4.0.3c.7646 B20201211, as a temporary workaround, consider disabling the loginauth function until a patch is available. Restrict access to the /cgi-bin/cstecgi.cgi API endpoint to minimize the risk of exploitation. Avoid using the http host parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.