CVE-2021-27708

Command Injection in TOTOLINK X5000R router with firmware v9.1.0u.6118_B20201102, and TOTOLINK A720R router with firmware v4.1.5cu.470_B20200911 allows remote attackers to execute arbitrary OS commands by sending a modified HTTP request. This occurs because the function executes glibc's system function with untrusted input. In the function, "command" parameter is directly passed to the attacker, allowing them to control the "command" field to attack the OS.

Published: Apr 14, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-27708
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-78

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
totolink / x5000r_firmware	9.1.0u.6118_b20201102	9.1.0u.6118_b20201102.x
totolink / a720r_firmware	4.1.5cu.470_b20200911	4.1.5cu.470_b20200911.x

https://hackmd.io/7FtB06f-SJ-SCfkMYcXYxA
https://hackmd.io/mDgIBvoxSPCZrZiZjfQGhw

Vulnerability Database

CVE-2021-27708

Deep Security Visibility Without the Complexity