A vulnerability described as critical has been identified in Totolink CA750-PoE 6.2c.510 . This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler . Such manipulation of the argument webWlanIdx leads to os command injection. This vulnerability is referenced as CVE-2026-9511 . It is possible to launch the attack remotely. Furthermore, an exploit is available.