Which versions of A7100Ru are affected by CVE-2026-6113?

Totolik A7100RU routers (version 7.4cu.2313_b20191024 and potentially earlier) contain a critical OS command injection vulnerability that allows unauthenticated attackers to remotely execute…

Is there a public PoC exploit available for CVE-2026-6113?

Yes, a public proof-of-concept exploit is available for CVE-2026-6113. Prioritise patching immediately. EPSS: 0.9%.

How to fix or mitigate CVE-2026-6113?

Within 24 hours: Identify and inventory all Totolik A7100RU devices on your network (check management interfaces and DHCP logs for the MAC prefix). Within 7 days: Contact Totolik support to confirm patch availability status and request urgent firmware updates; simultaneously implement network segmentation to isolate affected routers from sensitive systems and restrict administrative access. Within 30 days: Either deploy patched firmware when available or evaluate replacement with alternative router hardware from actively-maintained vendors; conduct forensic review of router logs and connected systems for signs of compromise.

A7100Ru CVE-2026-6113

Q: What is the CVSS score of CVE-2026-6113?

CVE-2026-6113 has a CVSS 4.0 base score of 8.9 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.9%.

EUVD-2026-21702 HIGH

OS Command Injection (CWE-78)

2026-04-12 VulDB

Command Injection A7100Ru

8.9

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

8.9 HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Re-analysis Queued

Apr 27, 2026 - 19:07 vuln.today

cvss_changed

PoC Detected

Apr 27, 2026 - 19:05 vuln.today

Public exploit code

Severity Changed

Apr 12, 2026 - 04:22 NVD

CRITICAL HIGH

CVSS changed

Apr 12, 2026 - 04:22 NVD

9.8 (CRITICAL) 8.9 (HIGH)

Analysis Generated

Apr 12, 2026 - 04:05 vuln.today

EUVD ID Assigned

Apr 12, 2026 - 04:00 euvd

EUVD-2026-21702

Analysis Generated

Apr 12, 2026 - 04:00 vuln.today

CVE Published

Apr 12, 2026 - 03:00 nvd

HIGH 8.9

DescriptionCVE.org

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. Affected by this vulnerability is the function setTtyServiceCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument ttyEnable leads to os command injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

AnalysisAI

OS command injection in Totolink A7100RU router version 7.4cu.2313_b20191024 allows unauthenticated remote attackers to execute arbitrary system commands via the ttyEnable parameter in the setTtyServiceCfg function of /cgi-bin/cstecgi.cgi. Public exploit code is available (GitHub POC published). …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Scan internet for exposed Totolink management interfaces

Delivery

Send crafted POST to /cgi-bin/cstecgi.cgi with injected ttyEnable parameter

Exploit

CGI handler executes malicious commands as root

Execution

Install persistence mechanism and exfiltrate credentials

Impact

Pivot to internal network devices