Lucene search
+L

175 matches found

OSV
OSV
added 2025/05/08 8:15 p.m.6 views

CVE-2025-45798

A command execution vulnerability exists in the TOTOLINK A950RG V4.1.2cu.5204B20210112. The vulnerability is located in the setNoticeCfg interface within the /lib/cstemodules/system.so library, specifically in the processing of the IpTo parameter...

9.8CVSS5.9AI score0.01023EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/08 12:0 a.m.5 views

TOTOLINK A950RG 安全漏洞

The TOTOLINK A950RG is an ultra-generation Giga wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A950RG suffers from a buffer overflow vulnerability that originates from the failure of the setNoticeCfg interface NoticeUrl parameter in /lib/cstemodules/system.so to correctly...

9.8CVSS8AI score0.12876EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/08 12:0 a.m.6 views

CVE-2025-45798

A command execution vulnerability exists in the TOTOLINK A950RG V4.1.2cu.5204B20210112. The vulnerability is located in the setNoticeCfg interface within the /lib/cstemodules/system.so library, specifically in the processing of the IpTo parameter...

6.7AI score0.01023EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/08 12:0 a.m.5 views

TOTOLINK A950RG 安全漏洞

The TOTOLINK A950RG is an ultra-generation Giga wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A950RG suffers from a command execution vulnerability that originates from the failure of the setNoticeCfg interface IpTo parameter in /lib/cstemodules/system.so to correctly filte...

9.8CVSS7.6AI score0.01023EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/08 12:0 a.m.118 views

CVE-2025-45797

TOTOlink A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of /lib/cstemodules/system.so...

0.12876EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/08 12:0 a.m.8 views

CVE-2025-45797

TOTOlink A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of /lib/cstemodules/system.so...

7.4AI score0.12876EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/08 12:0 a.m.49 views

CVE-2025-45798

A command execution vulnerability exists in the TOTOLINK A950RG V4.1.2cu.5204B20210112. The vulnerability is located in the setNoticeCfg interface within the /lib/cstemodules/system.so library, specifically in the processing of the IpTo parameter...

0.01023EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/08 12:0 a.m.4 views

PT-2025-20420 · Totolink · Totolink A950Rg

Name of the Vulnerable Software and Affected Versions: TOTOlink A950RG version 4.1.2cu.5204 B20210112 Description: The issue arises from improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of the /lib/cste modules/system.so module. This leads to a buffer overflow...

9.8CVSS6.2AI score0.12876EPSS
Exploits1References6
CVE
CVE
added 2025/05/08 12:0 a.m.57 views

CVE-2025-45798

CVE-2025-45798 is a command execution vulnerability in the TOTOLINK A950RG with firmware version 4.1.2cu.5204_B20210112. It arises from improper handling of the IpTo parameter in the setNoticeCfg interface inside /lib/cste_modules/system.so, enabling arbitrary command execution. Documented impact...

9.8CVSS7.4AI score0.01023EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2025/05/08 12:0 a.m.60 views

CVE-2025-45797

CVE-2025-45797 affects TOTOLINK A950RG (V4.1.2cu.5204_B20210112). The vulnerability is a buffer overflow in the setNoticeCfg interface’s NoticeUrl parameter validation within /lib/cste_modules/system.so, due to improper input length handling. Public sources describe potential arbitrary code execu...

9.8CVSS7.7AI score0.12876EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2025/05/07 12:0 a.m.3 views

TOTOLINK A950RG/A810R Command Execution Vulnerability

TOTOLINK A950RG and TOTOLINK A810R are both products of China's Gion Electronics TOTOLINK.TOTOLINK A950RG is a super-generation Giga wireless router.TOTOLINK A810R is a wireless dual-band router. A command execution vulnerability exists in the TOTOLINK A950RG and TOTOLINK A810R, which stems from...

9.8CVSS7.1AI score0.01018EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/04 12:9 a.m.23 views

CVE-2025-45800

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a command execution vulnerability in the setDeviceName interface of the /lib/cstemodules/global.so library, specifically in the processing of the deviceMac parameter...

9.8CVSS7.2AI score0.00725EPSS
Exploits1References1
NVD
NVD
added 2025/05/02 5:15 p.m.12 views

CVE-2025-45800

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a command execution vulnerability in the setDeviceName interface of the /lib/cstemodules/global.so library, specifically in the processing of the deviceMac parameter...

9.8CVSS0.00725EPSS
Exploits1References1
OSV
OSV
added 2025/05/02 5:15 p.m.5 views

CVE-2025-45800

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a command execution vulnerability in the setDeviceName interface of the /lib/cstemodules/global.so library, specifically in the processing of the deviceMac parameter...

9.8CVSS5.9AI score0.00725EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/02 12:0 a.m.4 views

TOTOLINK A950RG 安全漏洞

The TOTOLINK A950RG is an ultra-generation Giga wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A950RG suffers from a command execution vulnerability that stems from improper handling of the deviceMac parameter in the setDeviceName interface in the /lib/cstemodules/global.so...

9.8CVSS7.6AI score0.00725EPSS
Exploits1References2
CVE
CVE
added 2025/05/02 12:0 a.m.70 views

CVE-2025-45800

Totolink A950RG (version 4.1.2cu.5204_B20210112) contains a command execution vulnerability in the setDeviceName interface, specifically in the processing of the deviceMac parameter within /lib/cste_modules/global.so. The issue is triggered via network access to the interface and could allow an a...

9.8CVSS7.2AI score0.00725EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/05/02 12:0 a.m.23 views

CVE-2025-45800

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a command execution vulnerability in the setDeviceName interface of the /lib/cstemodules/global.so library, specifically in the processing of the deviceMac parameter...

0.00725EPSS
Exploits1References1
CNVD
CNVD
added 2025/04/27 12:0 a.m.5 views

TOTOLINK A950RG NoticeUrl Parameter Arbitrary Command Execution Vulnerability

TOTOLINK A950RG is a gaming router and smart router that supports 2.4GHz and 5GHz dual band. The TOTOLINK A950RG suffers from a command execution vulnerability that originates from the NoticeUrl parameter in the setNoticeCfg function, which can be exploited by an attacker to execute arbitrary...

9.8CVSS7.1AI score0.01135EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/04/26 5:26 a.m.19 views

CVE-2025-28026

TOTOLINK A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 were found to contain a buffer overflow vulnerability in downloadFile.cgi...

7.3CVSS7.6AI score0.00351EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/26 5:20 a.m.15 views

CVE-2025-28037

TOTOLINK A810R V4.1.2cu.5182B20201026 and A950RG V4.1.2cu.5161B20200903 were found to contain a pre-auth remote command execution vulnerability in the setDiagnosisCfg function through the ipDomain parameter...

9.8CVSS7.5AI score0.01018EPSS
Exploits1References1
Rows per page
Query Builder