CVE-2026-5177 | Totolink A3300R 17.0.0cu.557_b20221024 /cgi-bin/cstecgi.cgi setWiFiBasicCfg rxRate command injection

A vulnerability, which was classified as critical, was found in Totolink A3300R 17.0.0cu.557_b20221024. Affected by this vulnerability is the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument rxRate can lead to command injection.

The identification of this vulnerability is CVE-2026-5177. The attack may be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More