Lucene search
K

224 matches found

CNVD
CNVD
added 2022/09/19 12:0 a.m.2 views

TOTOLINK A720R Code Execution Vulnerability (CNVD-2025-29722)

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK with dual-band Wi-Fi capabilities, focusing on high-speed internet and signal coverage. The TOTOLINK A720R suffers from a code execution vulnerability that stems from the over setdiagnosicfg function found to contain a...

7.2CVSS7.6AI score0.01655EPSS
Exploits1References1
CNVD
CNVD
added 2022/09/19 12:0 a.m.4 views

TOTOLINK A720R Code Execution Vulnerability

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK with dual-band Wi-Fi capabilities, focusing on high-speed internet and signal coverage. The TOTOLINK A720R suffers from a code execution vulnerability that stems from the discovery of a remote code execution RCE...

7.2CVSS7.5AI score0.01655EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/09/15 12:0 a.m.4 views

TOTOLINK A720R 操作系统命令注入漏洞

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK with dual-band Wi-Fi capabilities, focusing on high-speed internet and signal coverage. The TOTOLINK A720R suffers from a code execution vulnerability that stems from the discovery of a remote code execution RCE...

7.2CVSS8.1AI score0.01655EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/09/15 12:0 a.m.9 views

PT-2022-24441 · Totolink · Totolink A720R

Name of the Vulnerable Software and Affected Versions: TOTOLINK-720R version 4.1.5cu.374 Description: A remote code execution issue was discovered, which can be exploited via the setdiagnosicfg function. Recommendations: For TOTOLINK-720R version 4.1.5cu.374, consider disabling the setdiagnosicfg...

7.2CVSS7.4AI score0.01655EPSS
Exploits1References2
CNVD
CNVD
added 2022/08/30 12:0 a.m.4 views

TOTOLINK A720R Hardcoded Vulnerability

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK with dual-band Wi-Fi capabilities, focusing on high-speed internet and signal coverage. The TOTOLINK A720R suffers from a hard-coded vulnerability that stems from the inclusion of root's hard-coded password in...

7.8CVSS7.8AI score0.00283EPSS
Exploits1References1
CNVD
CNVD
added 2022/08/30 12:0 a.m.3 views

TOTOLINK A720R Command Injection Vulnerability (CNVD-2025-29723)

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK with dual-band Wi-Fi capabilities, focusing on high-speed internet and signal coverage. The TOTOLINK A720R suffers from a command injection vulnerability that originates from a command injection issue with the username...

7.8CVSS8AI score0.01086EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/08/29 12:15 a.m.3 views

CVE-2022-36610

TOTOLINK A720R V4.1.5cu.532B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

7.8CVSS7.1AI score0.00283EPSS
Exploits1References2
OSV
OSV
added 2022/08/29 12:15 a.m.5 views

CVE-2022-36610

TOTOLINK A720R V4.1.5cu.532B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

7.8CVSS5.8AI score0.00283EPSS
Exploits1References1
NVD
NVD
added 2022/08/29 12:15 a.m.23 views

CVE-2022-36610

TOTOLINK A720R V4.1.5cu.532B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

7.8CVSS0.00283EPSS
Exploits1References1
Prion
Prion
added 2022/08/29 12:15 a.m.20 views

Hardcoded credentials

TOTOLINK A720R V4.1.5cu.532B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

4.3CVSS7.8AI score0.00283EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/08/28 11:58 p.m.23 views

CVE-2022-36610

TOTOLINK A720R V4.1.5cu.532B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

8AI score0.00283EPSS
Exploits1References1
CVE
CVE
added 2022/08/28 11:58 p.m.58 views

CVE-2022-36610

CVE-2022-36610 affects TOTOLINK A720R, specifically version 4.1.5cu.532_B20210610, which reportedly contains a hardcoded root password in /etc/shadow.sample. The root cause is a hardcoded credential embedded in the device image, enabling local unauthorized access if exploited. Impact is described...

7.8CVSS7.7AI score0.00283EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.8 views

PT-2022-23504 · Totolink · Totolink A720R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A720R version 4.1.5cu.532 B20210610 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...

7.8CVSS7.6AI score0.00283EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/08/28 12:0 a.m.4 views

TOTOLINK A720R 信任管理问题漏洞

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK with dual-band Wi-Fi capabilities, focusing on high-speed internet and signal coverage. The TOTOLINK A720R suffers from a hard-coded vulnerability that stems from the inclusion of root's hard-coded password in...

7.8CVSS7AI score0.00283EPSS
Exploits1References3
OSV
OSV
added 2022/08/25 2:15 p.m.1 views

CVE-2022-36456

TOTOLink A720R V4.1.5cu.532B20210610 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi...

7.8CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/08/25 2:15 p.m.4 views

CVE-2022-36456

TOTOLink A720R V4.1.5cu.532B20210610 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi...

7.8CVSS7.6AI score0.01086EPSS
Exploits1References2
NVD
NVD
added 2022/08/25 2:15 p.m.33 views

CVE-2022-36456

TOTOLink A720R V4.1.5cu.532B20210610 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi...

7.8CVSS0.01086EPSS
Exploits1References1
Prion
Prion
added 2022/08/25 2:15 p.m.16 views

Command injection

TOTOLink A720R V4.1.5cu.532B20210610 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi...

4.3CVSS7.9AI score0.01086EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/08/25 1:53 p.m.53 views

CVE-2022-36456

Totolink A720R firmware 4.1.5cu.532_B20210610 contains a command-injection flaw in /cstecgi.cgi caused by insufficient sanitization of the username parameter. This yields potential local command execution. The PT-2022-23380 advisory confirms the affected version and recommends restricting access ...

7.8CVSS7.8AI score0.01086EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/08/25 1:53 p.m.24 views

CVE-2022-36456

TOTOLink A720R V4.1.5cu.532B20210610 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi...

8.1AI score0.01086EPSS
Exploits1References1
Rows per page
Query Builder