Description
A weakness has been identified in Totolink CA750-PoE 6.2c.510. This issue affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument host_time can lead to os command injection. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks.
Published: 2026-05-25
Score: 5.3 Medium
EPSS: 2.9% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in the NTPSyncWithHost function within /cgi-bin/cstecgi.cgi of the Totolink CA750-PoE router. By manipulating the host_time argument, an attacker can inject and execute arbitrary operating system commands. This flaw can compromise the confidentiality, integrity, and availability of the device, allowing an attacker to gain full control over the router's operating system environment. The weakness is recognized as a command injection, mapping to CWE-77 and CWE-78.

Affected Systems

The affected product is the Totolink CA750-PoE router running firmware version 6.2c.510. No other versions or vendors are explicitly listed in the current CVE data.

Risk and Exploitability

The CVSS score of 5.3 indicates a moderate severity, but the public availability of exploits and the remote nature of the attack raise the practical risk. EPSS is 3%, and the vulnerability is not in the CISA KEV catalog, yet an attacker can remotely trigger the flawed NTPSyncWithHost handler to execute arbitrary commands on the device. Defensive measures should treat this as a high-impact issue.

Generated by OpenCVE AI on May 26, 2026 at 15:35 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware update for the Totolink CA750-PoE that eliminates the NTPSyncWithHost command injection flaw.
  • If an immediate update is not feasible, restrict management access to the router, confining the Setting Handler to a local network or a firewall-protected segment.
  • Disable or remove the NTPSyncWithHost functionality through configuration or alternative NTP settings, and monitor system logs for suspicious command execution patterns.

Generated by OpenCVE AI on May 26, 2026 at 15:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 25 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description A weakness has been identified in Totolink CA750-PoE 6.2c.510. This issue affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument host_time can lead to os command injection. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks.
Title Totolink CA750-PoE Setting cstecgi.cgi NTPSyncWithHost os command injection
First Time appeared Totolink
Totolink ca750-poe
Weaknesses CWE-77
CWE-78
CPEs cpe:2.3:a:totolink:ca750-poe:*:*:*:*:*:*:*:*
Vendors & Products Totolink
Totolink ca750-poe
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Totolink Ca750-poe
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-25T22:30:12.005Z

Reserved: 2026-05-25T15:08:49.384Z

Link: CVE-2026-9513

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-25T23:16:34.233

Modified: 2026-05-25T23:16:34.233

Link: CVE-2026-9513

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-26T15:45:08Z

Weaknesses