NVD CRITICAL: CVE-2026-5852 — A weakness has been identified in Totolink A7100RU 7.4cu.2313_b20191024. Affecte...

Thursday, April 9, 2026 at 07:16 AM UTC·Source: NIST NVD

Updated: Thursday, April 9, 2026 at 07:17 AM UTC

Executive Summary

A weakness has been identified in Totolink A7100RU 7.4cu.2313_b20191024. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument igmpVer causes os command injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks.

Analysis

Indicators of Compromise (1)

CVE (1)

CVE-2026-5852

NVD MITRE CVE

Source Attribution

Originally published by NIST NVD on Apr 9, 2026. Verified by: NIST.

Related Threats

MEDIUMVulnerabilityNEW

Fold rolls out bitcoin rewards credit card

Fold Holdings, Inc. (NASDAQ: FLD) (“Fold” or the “Company”), a bitcoin financial services company making it easy for individuals to earn, save and spend bitcoin through everyday financial tools, announced it has begun rolling out the Fold Bitcoin Credit Card to a portion of the waitlist members.

16m agoFinextra

MEDIUMVulnerabilityNEW

Sella becomes first bank in Italy to get permission to set up crypto-asset services

Banca Sella has completed the process of notification to the Bank of Italy as set out in the European MiCA (Markets in Crypto-Assets) Regulation and is the first bank in Italy to be authorized to offer crypto-asset services, relating in particular to the custody and transfer of digital assets.

18m agoFinextra

CRITICALVulnerabilityNEW

Romanian national sentenced to more than 4 years for hacking Oregon government systems

Dragomir was arrested in Romania in November 2024 and brought to the U.S. last year to face charges for hacking into the network belonging to Oregon’s Office of Emergency Management.

55m agoThe Record