Home

Description

Totolink A3300R V17.0.0cu.596_B20250515 was found to contain a command injection vulnerability in the sub_4197C0 function via the mac and desc parameters. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a crafted request.

PUBLISHED Reserved 2025-06-16 | Published 2025-07-17 | Updated 2025-09-15 | Assigner mitre

References

www.notion.so/...f2dc8b80348d94e7fd1378d475?source=copy_link

github.com/...ink/blob/main/CVE-2025-52046/CVE-2025-52046.md

cve.org (CVE-2025-52046)

nvd.nist.gov (CVE-2025-52046)

Download JSON