The TOTOLINK A3002R router is susceptible to a command injection vulnerability via the devicemac parameter in the formMapDel endpoint. This flaw enables an attacker to execute arbitrary commands on the affected device, potentially leading to unauthorized access and control. It highlights the importance of securing router configurations and implementing robust protective measures to safeguard against exploitation.
https://securityvulnerability.io/vulner ... 2025-55591