Description
A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument PIN can lead to os command injection. It is possible to launch the attack remotely. The exploit has been published and may be used.
Published: 2026-05-26
Score: 5.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw has been identified in the CA750‑PoE firmware 6.2c.510 that allows remote manipulation of the PIN argument to the setWiFiWpsConfig function within the cstecgi.cgi Setting Handler component. The vulnerability permits execution of arbitrary operating system commands, effectively granting an attacker the ability to run code on the device. The impact is the potential compromise of the router’s stability, confidentiality, and integrity, as attackers can administrate the device, alter configurations, or install further malware.

Affected Systems

This issue affects all devices identified as Totolink CA750‑PoE running firmware 6.2c.510. No additional version information is supplied, so earlier firmware revisions may also be susceptible depending on code similarity.

Risk and Exploitability

The problem can be triggered remotely through the web interface, meaning a threat actor does not need physical access. The CVSS score of 5.3 indicates a moderate-level vulnerability; however, the lack of an EPSS score and absence from the KEV catalog provide no statistical data on current exploitation probabilities. Published exploits are available, so if the device is exposed to untrusted networks or remote management is enabled, the risk of a real-world compromise is significant. The primary attack vector is through HTTP requests to the CGI script, typically reaching the router from outside the local network.

Generated by OpenCVE AI on May 26, 2026 at 07:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest vendor firmware upgrade that removes the command injection flaw.
  • If a patch is not yet available, restrict or disable remote management and WPS functionality, and block HTTP access to /cgi-bin/cstecgi.cgi via firewall rules.
  • Continuously monitor router logs for abnormal command execution attempts and review access control configurations to ensure only trusted IP ranges can reach the management interface.

Generated by OpenCVE AI on May 26, 2026 at 07:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 26 May 2026 06:30:00 +0000

Type Values Removed Values Added
Description A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument PIN can lead to os command injection. It is possible to launch the attack remotely. The exploit has been published and may be used.
Title Totolink CA750-PoE Setting cstecgi.cgi setWiFiWpsConfig os command injection
First Time appeared Totolink
Totolink ca750-poe
Weaknesses CWE-77
CWE-78
CPEs cpe:2.3:a:totolink:ca750-poe:*:*:*:*:*:*:*:*
Vendors & Products Totolink
Totolink ca750-poe
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Totolink Ca750-poe
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-26T05:30:11.573Z

Reserved: 2026-05-25T19:44:16.865Z

Link: CVE-2026-9534

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-26T07:30:36Z

Weaknesses