CVE-2026-11554 – TOTOLINK CP450 vsftpd vsftpd.conf least privilege violation

CVE ID :CVE-2026-11554

Published : June 8, 2026, 6:16 p.m. | 17 minutes ago

Description :A vulnerability was determined in TOTOLINK CP450 4.1.0cu.747. This vulnerability affects unknown code of the file /etc/vsftpd.conf of the component vsftpd. This manipulation causes least privilege violation. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-49141 – WACRM Authorization Bypass via Automation Engine Endpoint

CVE-2026-47345 – TYPO3 HTML Sanitizer allows Cross-Site Scripting

CVE-2026-47344 – TYPO3 HTML Sanitizer allows Cross-Site Scripting

CVE-2026-46484 – Headplane: Path Traversal + RBAC Bypass in renameNode allows authenticated OIDC users to expire or rename any node/user