CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability was found in TOTOLINK A3000RU 5.9c.5185. It has been rated as problematic. This issue affects some unknown processing of the file /webcste/cgi-bin/product.ini. The manipulation leads to use of hard-coded password. The exploit has been disclosed to the public and may be used. The...

8.8CVSS8.7AI score0.00116EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:11 a.m.•5 views

CVE-2022-36615

TOTOLINK A3000RU V4.1.2cu.5185B20201128 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

7.8CVSS7.6AI score0.00056EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:4 a.m.•4 views

CVE-2022-25075

TOTOLink A3000RU V5.9c.2280B20180512 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERYSTRING parameter...

9.8CVSS8.6AI score0.42094EPSS

Exploits1References1

BDU FSTEC•added 2025/05/23 12:0 a.m.•2 views

The vulnerability of the /cgi-bin/ExportSyslog.sh script, a microprogramming solution for TOTOLINK A3000RU routers, allows a hacker to circumvent existing security restrictions.

The vulnerability of the /cgi-bin/ExportSyslog.sh script, a microprogramming solution for TOTOLINK A3000RU routers, is related to the improper assignment of privileges. Exploiting this vulnerability could allow an attacker to bypass security restrictions remotely...

4.3CVSS5.4AI score0.00068EPSS

Exploits1References6Affected Software1

BDU FSTEC•added 2025/05/23 12:0 a.m.•2 views

The vulnerability of the /cgi-bin/ExportIbmsConfig.sh file, a component of the IBMS Configuration File Handler microprogramming system for TOTOLINK A3000RU routers, allows a hacker to trigger a service failure.

The vulnerability of the /cgi-bin/ExportIbmsConfig.sh file, a component of the IBMS Configuration File Handler microprogramming system for TOTOLINK A3000RU routers, is related to access control deficiencies. Exploiting this vulnerability could allow an attacker to cause service interruptions...

5.3CVSS5.9AI score0.00234EPSS

Exploits1References6Affected Software1

RedhatCVE•added 2025/04/26 5:26 a.m.•7 views

CVE-2025-28026

TOTOLINK A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 were found to contain a buffer overflow vulnerability in downloadFile.cgi...

7.3CVSS7.6AI score0.00141EPSS

Exploits1References1

RedhatCVE•added 2025/04/26 5:8 a.m.•11 views

CVE-2025-28027

TOTOLINK A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 was found to contain a buffer overflow vulnerability in downloadFile.cgi...

7.3CVSS7.6AI score0.00141EPSS

Exploits1References1

RedhatCVE•added 2025/04/26 5:6 a.m.•13 views

CVE-2025-28032

TOTOLINK A800R V4.1.2cu.5137B20200730, A810R V4.1.2cu.5182B20201026, A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 contain a pre-auth buffer overflow vulnerability in the setNoticeCfg function through the IpForm paramet...

7.3CVSS7.5AI score0.00141EPSS

Exploits1References1

OSV•added 2025/04/23 5:16 p.m.•2 views

CVE-2025-28028

7.3CVSS6AI score0.00164EPSS

Exploits1References2

NVD•added 2025/04/23 5:16 p.m.•8 views

CVE-2025-28028

7.3CVSS0.00164EPSS

Exploits1References2

OSV•added 2025/04/23 5:16 p.m.•3 views

CVE-2025-28025

7.3CVSS6AI score0.00148EPSS

Exploits1References2

Vulnrichment•added 2025/04/23 12:0 a.m.•7 views

CVE-2025-28028

7.6AI score0.00164EPSS

Exploits1References2

Positive Technologies•added 2025/04/23 12:0 a.m.•2 views

PT-2025-17655 · Totolink · Totolink A950Rg +3

Name of the Vulnerable Software and Affected Versions: TOTOLINK A830R version 4.1.2cu.5182 B20201102 TOTOLINK A950RG version 4.1.2cu.5161 B20200903 TOTOLINK A3000RU version 5.9c.5185 B20201128 TOTOLINK A3100R version 4.1.2cu.5247 B20211129 Description: A buffer overflow issue was discovered in th...

7.3CVSS6.9AI score0.00164EPSS

Exploits1References5

OSV•added 2025/04/22 6:15 p.m.•3 views

CVE-2025-28027

7.3CVSS6AI score0.00141EPSS

Exploits1References2

OSV•added 2025/04/22 6:15 p.m.•2 views

CVE-2025-28026

7.3CVSS6.1AI score0.00141EPSS

Exploits1References2

Rows per page