Vulnerabilities

Report: Latest: CVE-2026-5103 - Totolink A3300R cstecgi.cgi setUPnPCfg command injection

2026-03-30 0 views admin

CVE ID :CVE-2026-5103 Published : March 30, 2026, 2:16 a.m. | 50 minutes ago Description :A weakness has been identified in Totolink A3300R 17.0.0cu.557_b20221024. This issue affects the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument enable causes command injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks. Severity: 6.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-5103

Severity

MEDIUM

Published

March 30, 2026

Impact: command injection

🏷️ Tags

reportlatesttotolinka3300rcstecgisetupnpcfgcommandinjectioncvecve-2026-5103

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Latest: CVE-2026-5103 - Totolink A3300R cstecgi.cgi setUPnPCfg command injection

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-5104 - Totolink A3300R cstecgi.cgi setStaticRoute command injection

Report: CVE-2025-15036 - Path Traversal Vulnerability in mlflow/mlflow

Report: CVE-2026-3124 - Download Monitor <= 5.1.7 - insecure direct object reference to unauthenticated a

Report: Ultimate Guide: CVE-2026-5101 - Totolink A3300R Parameter cstecgi.cgi setLanCfg command injection

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting