A vulnerability categorized as critical has been discovered in TOTOLINK EX200 4.0.3c.7646 . This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd . The manipulation results in least privilege violation. This vulnerability is known as CVE-2026-11620 . It is possible to launch the attack remotely. Furthermore, an exploit is available.