CVE-2024-0944

Summary

CVE-2024-0944 is a recently disclosed vulnerability affecting the Totolink T8 4.1.5cu.833_20220905 firmware. This issue, which carries a problematic rating, impacts an unspecified functionality within the /cgi-bin/cstecgi.cgi file. Manipulation of this component results in session expiration, allowing for potential remote attacks. The complexity of exploitation is reportedly high, making it difficult for attackers to successfully leverage this vulnerability. The exploit has been made public, increasing the risk for potential attacks. The identifier for this issue is VDB-252218. Unfortunately, the vendor has not responded to early disclosure notifications.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.