CVE-2025-60687
MediumCVSS 6.5Exploitation Probability (EPSS)
Very high risk93th percentile - higher than 93% of all known CVEs
Summary
An unauthenticated command injection vulnerability exists in the ToToLink LR1200GB router firmware V9.1.0u.6619_B20230130 within the cstecgi.cgi binary (sub_41EC68 function). The binary reads the "imei" parameter from a web request and verifies only that it is 15 characters long, then directly inserts it into a system command using sprintf() and executes it with system().
Risk Assessment
An unauthenticated attacker can remotely execute arbitrary commands on the router, leading to full device compromise, network traffic interception, or use in DDoS attacks.
Recommendation
Immediately update the router firmware to the latest version if a patch is available. In the meantime, restrict administrative access to trusted networks and disable remote access.
Original NVD description (English source)
An unauthenticated command injection vulnerability exists in the ToToLink LR1200GB Router firmware V9.1.0u.6619_B20230130 within the cstecgi.cgi binary (sub_41EC68 function). The binary reads the "imei" parameter from a web request and verifies only that it is 15 characters long. The parameter is then directly inserted into a system command using sprintf() and executed with system(). Maliciously crafted IMEI input can execute arbitrary commands on the router without authentication.

