CVE-2026-1547

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Totolink A7000R version 4.1cu.4154

Description A flaw exists in the setUnloadUserData function within the /cgi-bin/cstecgi.cgi file of the affected product. Manipulation of the plugin name argument can lead to command injection. This allows for remote attacks. The exploit is publicly available.

Recommendations Apply a software update that addresses the vulnerability in the setUnloadUserData function. As a temporary workaround, restrict access to the /cgi-bin/cstecgi.cgi file. Avoid using the plugin name parameter in the affected file until the issue is resolved.

Exploit

Fix

Command Injection

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77CWE-74

Related Identifiers

BDU:2026-00935

CVE-2026-1547

Affected Products

Totolink A7000R

CVE-2026-1547

Weakness Enumeration

Related Identifiers

Affected Products

References · 13