Vulnerability Details CVE-2022-36456
TOTOLink A720R V4.1.5cu.532_B20210610 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.7%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2022-36456
-
cpe:2.3:h:totolink:a720r:-
-
cpe:2.3:o:totolink:a720r_firmware:4.1.5cu.532_b20210610