Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

149 matches found

Prion
Prionadded 2024/01/23 3:15 p.m.14 views

Stack overflow

TOTOLINKA3700RV9.1.2u.616520211012has a stack overflow vulnerability via setLanguageCfg...

7.5CVSS7.7AI score0.01451EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2024/01/23 12:0 a.m.19 views

CVE-2024-22660

TOTOLINKA3700RV9.1.2u.616520211012has a stack overflow vulnerability via setLanguageCfg...

9.8AI score0.01451EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2024/01/23 12:0 a.m.2 views

PT-2024-19524 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 Description: The issue is related to a stack overflow vulnerability. This vulnerability can be triggered via the setLanguageCfg function. Recommendations: For TOTOLINK A3700R version 9.1.2u.6165, as a...

9.8CVSS9.3AI score0.01451EPSS
Exploits1References3
CVE
CVEadded 2024/01/23 12:0 a.m.37 views

CVE-2024-22660

The CVE-2024-22660 entry concerns the TOTOLINK A3700R family. A stack overflow vulnerability exists in the setLanguageCfg function, triggered by improper input validation, and affects TOTOLINK A3700R devices (notably version 9.1.2u.6165, build 20211012). The root cause is a buffer/stack overflow ...

9.8CVSS9.5AI score0.01451EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/23 12:0 a.m.1 views

CVE-2024-22660

TOTOLINKA3700RV9.1.2u.616520211012has a stack overflow vulnerability via setLanguageCfg...

9.7AI score0.01451EPSS
Exploits1References1
Cvelist
Cvelistadded 2024/01/16 3:31 p.m.8 views

CVE-2024-0577 Totolink LR1200GB cstecgi.cgi setLanguageCfg stack-based overflow

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130. It has been rated as critical. This issue affects the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument lang leads to stack-based buffer overflow. The attack may be initiated remotely. Th...

9CVSS9.8AI score0.00379EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/01/16 3:31 p.m.5 views

CVE-2024-0577 Totolink LR1200GB cstecgi.cgi setLanguageCfg stack-based overflow

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130. It has been rated as critical. This issue affects the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument lang leads to stack-based buffer overflow. The attack may be initiated remotely. Th...

9CVSS9.6AI score0.00379EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/01/16 12:0 a.m.1 views

TOTOLINK LR1200GB 安全漏洞

The TOTOLINK LR1200GB is a wireless dual-band 4G LTE router from China's TOTOLINK Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks. The TOTOLINK LR1200GB suffers from a buffer overflow vulnerability that originates from the lang parameter of the setLanguageCfg function of the...

9.8CVSS8.1AI score0.00379EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/01/16 12:0 a.m.4 views

PT-2024-1172 · Totolink · Totolink Lr1200Gb

Name of the Vulnerable Software and Affected Versions: Totolink LR1200GB version 9.1.0u.6619 B20230130 Description: A critical issue affects the setLanguageCfg function of the /cgi-bin/cstecgi.cgi file, where the manipulation of the lang argument leads to a stack-based buffer overflow. This can b...

10CVSS9.2AI score0.00379EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2023/12/22 7:15 p.m.0 views

CVE-2023-51020

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langType’ parameter of the setLanguageCfg interface of the cstecgi .cgi...

9.8CVSS6.1AI score0.00384EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2023/12/22 7:15 p.m.0 views

CVE-2023-51022

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langFlag’ parameter of the setLanguageCfg interface of the cstecgi .cgi...

9.8CVSS6.1AI score0.00294EPSS
Exploits1References2
OSV
OSVadded 2023/12/22 7:15 p.m.0 views

CVE-2023-51022

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langFlag’ parameter of the setLanguageCfg interface of the cstecgi .cgi...

9.8CVSS6AI score0.00294EPSS
Exploits1References1
OSV
OSVadded 2023/12/22 7:15 p.m.2 views

CVE-2023-51020

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langType’ parameter of the setLanguageCfg interface of the cstecgi .cgi...

9.8CVSS6AI score
Exploits0References1
Prion
Prionadded 2023/12/22 7:15 p.m.14 views

Command injection

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langFlag’ parameter of the setLanguageCfg interface of the cstecgi .cgi...

7.5CVSS7.4AI score0.00294EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2023/12/22 7:15 p.m.13 views

Command injection

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langType’ parameter of the setLanguageCfg interface of the cstecgi .cgi...

7.5CVSS7.4AI score0.00384EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2023/12/22 12:0 a.m.32 views

CVE-2023-51020

Summary (CVE-2023-51020) : Affects TOTOlink EX1800T, version 9.1.0cu.2112_B20220316. The flaw is in the setLanguageCfg interface’s cstecgi.cgi, exploitable via the langType parameter to perform unauthorized arbitrary command execution. The CVSS vector indicates Network access, no privileges requi...

9.8CVSS9.4AI score0.00384EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/12/22 12:0 a.m.10 views

CVE-2023-51020

TOTOlink EX1800T v9.1.0cu.2112B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langType’ parameter of the setLanguageCfg interface of the cstecgi .cgi...

7.2AI score0.00384EPSS
Exploits1References1
CVE
CVEadded 2023/12/22 12:0 a.m.41 views

CVE-2023-51022

CVE-2023-51022 affects TOTOLINK EX1800T, version 9.1.0cu.2112_B20220316. The vulnerability stems from the langFlag parameter in the setLanguageCfg interface of the cstecgi.cgi, allowing unauthorized arbitrary command execution. Multiple connected sources corroborate this issue, including Red Hat,...

9.8CVSS9.4AI score0.00294EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2023/12/22 12:0 a.m.2 views

PT-2023-31736 · Totolink · Totolink Ex1800T

Name of the Vulnerable Software and Affected Versions: TOTOlink EX1800T version 9.1.0cu.2112 B20220316 Description: The issue allows for unauthorized arbitrary command execution. This is achieved through the langType parameter in the setLanguageCfg interface of the cstecgi .cgi. Recommendations:...

9.8CVSS9.5AI score0.00384EPSS
Exploits1References2
CNNVD
CNNVDadded 2023/12/22 12:0 a.m.2 views

TOTOLINK EX1800T 安全漏洞

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T. The vulnerability stems from the failure of the langFlag parameter of the cstecgi .cgi's setLanguageCfg interface to properly filter constructed...

9.8CVSS7.8AI score0.00294EPSS
Exploits1References2
Rows per page
Query Builder