TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg function.
2023-02-14T15:15:11.417
2025-03-20T21:15:18.357
Modified
CVSSv3.1: 9.8 (CRITICAL)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | totolink | ca300-poe_firmware | 6.2c.884 | Yes |
| Hardware | totolink | ca300-poe | - | No |