Description
TOTOLINK EX300_V2 V4.0.3c.7484 was discovered to contain a command injection vulnerability via the langType parameter in the setLanguageCfg function. This vulnerability is exploitable via a crafted MQTT data packet.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-03T07:39:51.043Z
Reserved: 2022-06-05T00:00:00.000Z
Link: CVE-2022-32449
No data.
Status : Modified
Published: 2022-07-07T19:15:08.350
Modified: 2026-06-17T04:47:17.707
Link: CVE-2022-32449
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')