Description
An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the dhcpMtu parameter to /cgi-bin/cstecgi.cgi.
Published: 2026-04-23
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary command execution via the DHCP MTU parameter, enabling remote attackers to run arbitrary system commands on the device
Action: Apply Update
AI Analysis

Impact

An OS command‑injection flaw in the ToToLink A3300R firmware allows an attacker to arbitrarily execute commands by supplying malicious input in the dhcpMtu parameter to the /cgi-bin/cstecgi.cgi endpoint. This vulnerability, identified as CWE‑77, gives an attacker control over system commands, potentially leading to full device compromise. The CVE description does not specify authentication requirements, so it is unclear whether authentication is required for exploitation.

Affected Systems

The flaw affects only the ToToLink A3300R router running firmware version 17.0.0cu.557_B20221024. No other products or versions are listed as impacted.

Risk and Exploitability

The CVSS score of 6.5 reflects moderate severity, while the EPSS score of less than 1% suggests a very low probability of exploitation in the wild. The flaw is not currently listed in the CISA KEV catalog. Based on the endpoint and parameter names, it is inferred that the attack is launched remotely over the network, but the CVE description does not state whether authentication is required.

Generated by OpenCVE AI on April 28, 2026 at 23:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the device to a firmware version that fixes the command injection issue
  • Disable or restrict access to the /cgi-bin/cstecgi.cgi endpoint when possible
  • Apply network segmentation or firewall rules to block unauthorized access to the router’s web interface

Generated by OpenCVE AI on April 28, 2026 at 23:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 29 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Title Command Injection via DHCP MTU Parameter in ToToLink A3300R Firmware

Mon, 27 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Totolink
Totolink a3300r
Totolink a3300r Firmware
CPEs cpe:2.3:h:totolink:a3300r:-:*:*:*:*:*:*:*
cpe:2.3:o:totolink:a3300r_firmware:17.0.0cu.557_b20221024:*:*:*:*:*:*:*
Vendors & Products Totolink
Totolink a3300r
Totolink a3300r Firmware

Thu, 23 Apr 2026 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-77
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 23 Apr 2026 18:45:00 +0000

Type Values Removed Values Added
Description An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the dhcpMtu parameter to /cgi-bin/cstecgi.cgi.
References

Subscriptions

Totolink A3300r A3300r Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-04-23T19:04:19.232Z

Reserved: 2026-03-09T00:00:00.000Z

Link: CVE-2026-31163

cve-icon Vulnrichment

Updated: 2026-04-23T19:04:15.691Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-23T19:17:24.283

Modified: 2026-04-27T14:57:20.857

Link: CVE-2026-31163

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-29T00:00:13Z

Weaknesses