Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Ca300-poe Firmware Security Vulnerabilities

cve
cve

CVE-2023-24160

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the admuser parameter in the setPasswordCfg...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-14 03:15 PM
16
cve
cve

CVE-2023-24161

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the webWlanIdx parameter in the setWebWlanIdx...

9.8CVSS

9.8AI Score

0.046EPSS

2023-02-14 03:15 PM
15
cve
cve

CVE-2023-24159

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the admpass parameter in the setPasswordCfg...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-14 03:15 PM
17
cve
cve

CVE-2023-24147

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a hard code password for the telnet service which is stored in the component...

7.5CVSS

7.7AI Score

0.001EPSS

2023-02-03 04:15 PM
19
cve
cve

CVE-2023-24148

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the FileName parameter in the setUploadUserData...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
15
cve
cve

CVE-2023-24149

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a hard code password for root which is stored in the component...

9.8CVSS

9.6AI Score

0.052EPSS

2023-02-03 04:15 PM
16
cve
cve

CVE-2023-24146

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the minute parameter in the setRebootScheCfg...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
14
cve
cve

CVE-2023-24142

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagPingSize parameter in the setNetworkDiag...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
15
cve
cve

CVE-2023-24145

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the plugin_version parameter in the setUnloadUserData...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
77
cve
cve

CVE-2023-24143

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagTracertHop parameter in the setNetworkDiag...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
17
cve
cve

CVE-2023-24144

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the hour parameter in the setRebootScheCfg...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
26
cve
cve

CVE-2023-24140

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagPingNum parameter in the setNetworkDiag...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
19
cve
cve

CVE-2023-24141

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagPingTimeOut parameter in the setNetworkDiag...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
77
cve
cve

CVE-2023-24138

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the host_time parameter in the NTPSyncWithHost...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
81
cve
cve

CVE-2023-24139

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagHost parameter in the setNetworkDiag...

9.8CVSS

9.8AI Score

0.64EPSS

2023-02-03 04:15 PM
15