CVE-2024-23059 | Totolink A3300R 17.0.0cu.557_B20221024 setDdnsCfg username command injection

CVE-2024-23059 | Totolink A3300R 17.0.0cu.557_B20221024 setDdnsCfg username command injection

A vulnerability classified as critical was found in Totolink A3300R 17.0.0cu.557_B20221024. This vulnerability affects the function setDdnsCfg. The manipulation of the argument username leads to command injection. This vulnerability was named CVE-2024-23059. The attack can only be initiated within the local network. There is no exploit available.