CVE-2026-5692

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024

Description A flaw exists in the setGameSpeedCfg function of the TOTOLink A7100RU router firmware due to a failure to sanitize data at the management level. Successful exploitation could allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability involves command injection through manipulation of the enable argument in the /cgi-bin/cstecgi.cgi file.

Recommendations Update to a newer version that contains a fix for this vulnerability.