A vulnerability marked as critical has been reported in TOTOLINK CP450 4.1.0cu.747 . This vulnerability affects unknown code of the file /etc/vsftpd.conf of the component vsftpd . This manipulation causes least privilege violation. This vulnerability appears as CVE-2026-11554 . The attack may be initiated remotely. In addition, an exploit is available.