{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2025-6618","assignerOrgId":"1af790b2-7ee1-4545-860a-a788eba489b5","state":"PUBLISHED","assignerShortName":"VulDB","dateReserved":"2025-06-25T07:13:53.533Z","datePublished":"2025-06-25T17:31:07.361Z","dateUpdated":"2025-06-25T17:53:30.513Z"},"containers":{"cna":{"providerMetadata":{"orgId":"1af790b2-7ee1-4545-860a-a788eba489b5","shortName":"VulDB","dateUpdated":"2025-06-25T17:31:07.361Z"},"title":"TOTOLINK CA300-PoE wps.so SetWLanApcliSettings os command injection","problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-78","lang":"en","description":"OS Command Injection"}]},{"descriptions":[{"type":"CWE","cweId":"CWE-77","lang":"en","description":"Command Injection"}]}],"affected":[{"vendor":"TOTOLINK","product":"CA300-PoE","versions":[{"version":"6.2c.884","status":"affected"}]}],"descriptions":[{"lang":"en","value":"A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been classified as critical. Affected is the function SetWLanApcliSettings of the file wps.so. The manipulation of the argument PIN leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used."},{"lang":"de","value":"Es wurde eine kritische Schwachstelle in TOTOLINK CA300-PoE 6.2c.884 ausgemacht. Hiervon betroffen ist die Funktion SetWLanApcliSettings der Datei wps.so. Mittels Manipulieren des Arguments PIN mit unbekannten Daten kann eine os command injection-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk angegangen werden. Der Exploit steht zur öffentlichen Verfügung."}],"metrics":[{"cvssV4_0":{"version":"4.0","baseScore":5.3,"vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P","baseSeverity":"MEDIUM"}},{"cvssV3_1":{"version":"3.1","baseScore":6.3,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R","baseSeverity":"MEDIUM"}},{"cvssV3_0":{"version":"3.0","baseScore":6.3,"vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R","baseSeverity":"MEDIUM"}},{"cvssV2_0":{"version":"2.0","baseScore":6.5,"vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"}}],"timeline":[{"time":"2025-06-25T00:00:00.000Z","lang":"en","value":"Advisory disclosed"},{"time":"2025-06-25T02:00:00.000Z","lang":"en","value":"VulDB entry created"},{"time":"2025-06-25T09:19:07.000Z","lang":"en","value":"VulDB entry last update"}],"credits":[{"lang":"en","value":"pjqwudi (VulDB User)","type":"reporter"}],"references":[{"url":"https://vuldb.com/?id.313836","name":"VDB-313836 | TOTOLINK CA300-PoE wps.so SetWLanApcliSettings os command injection","tags":["vdb-entry","technical-description"]},{"url":"https://vuldb.com/?ctiid.313836","name":"VDB-313836 | CTI Indicators (IOB, IOC, TTP, IOA)","tags":["signature","permissions-required"]},{"url":"https://vuldb.com/?submit.602263","name":"Submit #602263 | TOTOLink CA300-PoE V6.2c.884 OS Command Injection","tags":["third-party-advisory"]},{"url":"https://github.com/wudipjq/my_vuln/blob/main/totolink4/vuln_44/44.md","tags":["related"]},{"url":"https://github.com/wudipjq/my_vuln/blob/main/totolink4/vuln_44/44.md#poc","tags":["exploit"]},{"url":"https://www.totolink.net/","tags":["product"]}]},"adp":[{"references":[{"url":"https://github.com/wudipjq/my_vuln/blob/main/totolink4/vuln_44/44.md","tags":["exploit"]},{"url":"https://github.com/wudipjq/my_vuln/blob/main/totolink4/vuln_44/44.md#poc","tags":["exploit"]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-06-25T17:53:27.206481Z","id":"CVE-2025-6618","options":[{"Exploitation":"poc"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-06-25T17:53:30.513Z"}}]}}