Primary

Context

TOTOLINK X18 Command Injection Vulnerability in setEasyMeshAgentCfg Function

Vulnerability

Patched

A command injection vulnerability has been identified in the TOTOLINK X18 router, specifically in version V9.1.0cu.2053_B20230309. The vulnerability arises in the setEasyMeshAgentCfg function, where the mac parameter can be manipulated to execute arbitrary commands.

Impact

Exploitation of this vulnerability allows for command injection, where an attacker can execute arbitrary commands on the device.

Reproduction

To reproduce this vulnerability, send a POST request to the device's CGI endpoint with a payload that includes a crafted mac parameter. The payload can be designed to execute commands on the device, such as reading the passwd file and writing it to a web-accessible location.

Added: Oct 1, 2025, 3:17 PM

Updated: Oct 1, 2025, 3:17 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

10.0

exploitability

6.2

remediation

7.7

relevance

0.6

threat

6.5

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

10.0

exploitability

6.2

remediation

7.7

relevance

0.6

threat

6.5

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TOTOLINK X18 Command Injection Vulnerability in setEasyMeshAgentCfg Function

Vulnerability

Impact

Reproduction

Affected Products

TOTOLINK X18

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating