CVE-2024-7334

A vulnerability was found in TOTOLINK EX1200L 9.3.5u.6146B20201023. It has been rated as critical. This issue affects the function UploadCustomModule of the file /cgi-bin/cstecgi.cgi. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed t...

TOTOLINK A3300R 安全漏洞

TOTOLINK A3300R is a wireless router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3300R. The vulnerability stems from the function UploadCustomModule parameter in the file /cgi-bin/cstecgi.cgi that causes a buffer overflow. No details of the...

CVE-2024-7187

A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182B20201102. It has been declared as critical. This vulnerability affects the function UploadCustomModule of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument File leads to buffer overflow. The attack can be initiated remotely...

PT-2024-38149 · Totolink · Totolink A3600R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3600R version 4.1.2cu.5182 B20201102 Description: A critical issue affects the UploadCustomModule function of the /cgi-bin/cstecgi.cgi file, where manipulation of the File argument leads to buffer overflow. This can be initiated...

CVE-2024-37631

TOTOLINK A3700R V9.1.2u.616520211012 was discovered to contain a stack overflow via the File parameter in function UploadCustomModule...

PT-2024-27686 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 20211012 Description: The issue is related to a stack overflow that occurs via the File parameter in the UploadCustomModule function. This allows for potential exploitation. Recommendations: For TOTOLINK...

TOTOLINK LR1200GB UploadCustomModule function stack buffer overflow vulnerability

The TOTOLINK LR1200GB is a wireless dual-band 4GLTE router from China's Gion Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks, and is primarily used to provide mobile broadband connectivity and Wi-Fi coverage. The TOTOLINK LR1200GB suffers from a stack buffer overflow...

CVE-2024-0578

A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function UploadCustomModule of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument File leads to stack-based buffer overflow. It is possible to launch the attack remotely...

TOTOLINK LR1200GB 安全漏洞

The TOTOLINK LR1200GB is a wireless dual-band 4GLTE router from China's Gion Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks, and is primarily used to provide mobile broadband connectivity and Wi-Fi coverage. The TOTOLINK LR1200GB suffers from a stack buffer overflow...

CVE-2023-36955

TOTOLINK CP300+ =V5.2cu.7594B20200910 was discovered to contain a stack overflow via the File parameter in the function UploadCustomModule...

CVE-2023-36947

TOTOLINK X5000R V9.1.0u.6118B20201102 and TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow via the File parameter in the function UploadCustomModule...

CVE-2023-36947

TOTOLINK X5000R V9.1.0u.6118B20201102 and TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow via the File parameter in the function UploadCustomModule...

TOTOLINK X5000R和TOTOLINK A7000R 缓冲区错误漏洞

TOTOLINK X5000R is a router.TOTOLINK A7000R is a wireless router. A stack overflow vulnerability exists in the TOTOLINK X5000R and A7000R UploadCustomModule function, which can be exploited by an attacker to execute arbitrary code on the system or cause a denial of service...

TOTOLINK CP300+ Buffer Error Vulnerability

The TOTOLINK CP300+ is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK CP300+ version V5.2cu.7594B20200910 and prior versions, which originates from a stack overflow contained in the File parameter of the function UploadCustomModule...

PT-2023-25749 · Totolink · Totolink X5000R +1

Name of the Vulnerable Software and Affected Versions: TOTOLINK X5000R version 9.1.0u.6118 B20201102 TOTOLINK A7000R version 9.1.0u.6115 B20201022 Description: A stack overflow issue was discovered via the File parameter in the UploadCustomModule function. This issue affects the specified version...

IBM Sterling Partner Engagement Manager 资源管理错误漏洞

TOTOLINK X5000R is a router.TOTOLINK A7000R is a wireless router. A stack overflow vulnerability exists in the TOTOLINK X5000R and A7000R UploadCustomModule function, which can be exploited by an attacker to execute arbitrary code on the system or cause a denial of service...

CVE-2022-41520

TOTOLINK NR1800X V9.1.0u.6279B20210910 was discovered to contain an authenticated stack overflow via the File parameter in the UploadCustomModule function...

TOTOLINK NR1800X 缓冲区错误漏洞

TOTOLINK NR1800X is an outstanding 5G NR indoor Wi-Fi and SIP CPE from China-based Gion Electronics TOTOLINK, designed to provide fast and easy deployment of NR fixed data services for homes and offices.A buffer overflow vulnerability exists in TOTOLINK NR1800X V9.1.0u.6279B20210910 version, whic...

redis-rce

PoC exploit for Redis RCE Remote Code Execution in Redis 4.x/5.x. The exploit is inspired by Redis post-exploitation techniques and is based on a modified version of the Redis Rogue Server. The exploit uses the RedisModules-ExecuteCommand library to load a custom Redis module, which allows for...

Arbitrary Code Execution

systemtap is vulnerable to arbitrary code execution. The vulnerability exists as it was found that SystemTap did not perform proper module path sanity checking if a user specified a custom path to the uprobes module, used when performing user-space probing "staprun -u". A local user who is a memb...