CVE Catalog

CVE-2025-60687

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Very high risk
6.08%

93th percentile - higher than 93% of all known CVEs

Summary

An unauthenticated command injection vulnerability exists in the ToToLink LR1200GB router firmware V9.1.0u.6619_B20230130 within the cstecgi.cgi binary (sub_41EC68 function). The binary reads the "imei" parameter from a web request and verifies only that it is 15 characters long, then directly inserts it into a system command using sprintf() and executes it with system().

Risk Assessment

An unauthenticated attacker can remotely execute arbitrary commands on the router, leading to full device compromise, network traffic interception, or use in DDoS attacks.

Recommendation

Immediately update the router firmware to the latest version if a patch is available. In the meantime, restrict administrative access to trusted networks and disable remote access.

Original NVD description (English source)

An unauthenticated command injection vulnerability exists in the ToToLink LR1200GB Router firmware V9.1.0u.6619_B20230130 within the cstecgi.cgi binary (sub_41EC68 function). The binary reads the "imei" parameter from a web request and verifies only that it is 15 characters long. The parameter is then directly inserted into a system command using sprintf() and executed with system(). Maliciously crafted IMEI input can execute arbitrary commands on the router without authentication.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS