CVE-2026-31168 - ToToLink A3300R Command Injection Vulnerability
CVE ID :CVE-2026-31168 Published : April 23, 2026, 7:17 p.m. | 33 minutes ago Description :An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the recHour parameter to /cgi-bin/cstecgi.cgi. Severity: 6.5 | MEDIUM
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Attempted hack on my Microsoft account. Was it a VPN node?
- [CYBER] KelpDAO hack news: Aave leads DeFi bailout push after $292M crypto exploit - CoinDesk
- [CYBER] US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied
- [CYBER] Speaking Freely: Lizzie O'Shea
- [CYBER] Dragos: Despite AI use, new malware targeting water plants is ‘hype’
- [CYBER] Trump’s pick to run US cyber agency CISA asks to drop out