๐ CVE-2022-32449 | TOTOLINK EX300 4.0.3c.7484 MQTT Data Packet setLanguageCfg langType command injection
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability has been found in TOTOLINK EX300 4.0.3c.7484 and classified as critical. Affected by this vulnerability is the function setLanguageCfg
of the component MQTT Data Packet Handler. The manipulation of the argument langType leads to command injection.
This vulnerability is known as CVE-2022-32449. Access to the local network is required for this attack to succeed. There is no exploit available. ...