What is CVE-2022-25082?

CVE-2022-25082 is a vulnerability in N/a. Published 2022-02-22.

Is CVE-2022-25082 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-25082

TOTOLink A950RG V5.9c.4050_B20190424 and V4.1.2cu.5204_B20210112 were discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERY_STRING pa…

EPSS: 0.896 (99.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/kenzer-templates

References

github.com/EPhaha/IOT_vuln/blob/main/TOTOLink/A950RG/README.md (x_refsource_MISC)

Frequently asked questions

What is CVE-2022-25082?: CVE-2022-25082 is a vulnerability in N/a. Published 2022-02-22.
Is CVE-2022-25082 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.