CVE advisoryCRITICAL
CVE-2023-31729
TOTOLINK A3300R Command Injection Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A command injection vulnerability exists in TOTOLINK A3300R firmware, allowing unauthenticated attackers to execute arbitrary commands on the device. This critical issue, exploitable over the network without user interaction, could lead to device compromise and impact network traffic. The threat is relevant to owners o