Vulnerability Details CVE-2024-22529
TOTOLINK X2000R_V2 V2.0.0-B20230727.10434 has a command injection vulnerability in the sub_449040 (handle function of formUploadFile) of /bin/boa.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.035
EPSS Ranking 87.2%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2024-22529
-
cpe:2.3:h:totolink:x2000r:v2
-
cpe:2.3:o:totolink:x2000r_firmware:2.0.0-b20230727.10434