Product

NR1800X 9.1.0u.6279_B20210910

2 briefs RSS

Totolink NR1800X Stack-Based Buffer Overflow Vulnerability

A stack-based buffer overflow vulnerability (CVE-2026-7546) in the Totolink NR1800X router allows remote attackers to achieve arbitrary code execution by sending a crafted HTTP request with a manipulated Host header to the vulnerable lighttpd component.

NR1800X 9.1.0u.6279_B20210910 cve remote code execution buffer overflow router

2r 1t 1c 3d ago

critical advisory

Totolink NR1800X Command Injection Vulnerability

2 rules 1 TTP 1 CVE

A command injection vulnerability exists in Totolink NR1800X version 9.1.0u.6279_B20210910, affecting the function sub_41A68C of the file /cgi-bin/cstecgi.cgi; by manipulating the argument setUssd, a remote attacker can inject commands, and an exploit is publicly available.

NR1800X 9.1.0u.6279_B20210910 command-injection router network

2r 1t 1c 3d ago