Description
A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argument webWlanIdx leads to os command injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used.
Published: 2026-05-25
Score: 5.3 Medium
EPSS: 1.1% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

This vulnerability is an OS command injection in the setWebWlanIdx parameter of the cstecgi.cgi interface on Totolink CA750-PoE routers. If an attacker is able to manipulate the webWlanIdx argument, they can execute arbitrary shell commands on the device. The ability to run system commands compromises confidentiality, integrity, and availability of the router’s firmware and other connected services, providing a pathway for remote code execution with potential full device control.

Affected Systems

The affected product is the Totolink CA750-PoE router running firmware version 6.2c.510. The vulnerability resides in the /cgi-bin/cstecgi.cgi component of the router’s setting handler. Only this specific firmware revision appears to be vulnerable.

Risk and Exploitability

The CVSS score of 5.3 denotes moderate severity. The EPSS score is 1%, indicating a low but nonzero exploitation probability, and the vulnerability is publicly documented; publicly available exploits exist, indicating a realistic exploitation chance. The vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that the attack vector is remote, with an attacker sending a crafted HTTP request carrying a malicious webWlanIdx value to the exposed CGI interface of the router.

Generated by OpenCVE AI on June 18, 2026 at 07:44 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest vendor firmware update that addresses the OS command injection in /cgi-bin/cstecgi.cgi on the Totolink CA750-PoE router.
  • If a firmware update is not yet available, enforce strict input validation on the webWlanIdx parameter by configuring the router’s web interface to restrict the value to a predefined whitelist or numeric range, thereby mitigating the command injection weaknesses represented by CWE-77 and CWE-78.
  • If possible, isolate the device from untrusted networks or block external access to the router’s control interface by using firewall rules or VLAN segmentation, reducing the risk of remote exploitation of the command injection vulnerability.

Generated by OpenCVE AI on June 18, 2026 at 07:44 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 28 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 25 May 2026 22:15:00 +0000

Type Values Removed Values Added
Description A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argument webWlanIdx leads to os command injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used.
Title Totolink CA750-PoE Setting cstecgi.cgi setWebWlanIdx os command injection
First Time appeared Totolink
Totolink ca750-poe
Weaknesses CWE-77
CWE-78
CPEs cpe:2.3:a:totolink:ca750-poe:*:*:*:*:*:*:*:*
Vendors & Products Totolink
Totolink ca750-poe
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}


Subscriptions

Totolink Ca750-poe
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-28T14:47:13.754Z

Reserved: 2026-05-25T15:08:40.055Z

Link: CVE-2026-9511

cve-icon Vulnrichment

Updated: 2026-05-28T14:45:00.927Z

cve-icon NVD

Status : Deferred

Published: 2026-05-25T22:16:34.357

Modified: 2026-06-17T11:05:23.957

Link: CVE-2026-9511

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T07:45:03Z

Weaknesses
  • CWE-77

    Improper Neutralization of Special Elements used in a Command ('Command Injection')

  • CWE-78

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')