Lucene search
K

108 matches found

Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.6 views

PT-2024-21930 · Totolink · Totolink A3300R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3300R version 17.0.0cu.557 B20221024 Description: The issue allows an attacker to take complete control of the device through an unauthenticated remote command execution via multiple parameters in the setOpModeCfg function. This...

8CVSS8.4AI score0.01498EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/03/26 12:0 a.m.13 views

CVE-2024-27521

TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain an unauthenticated remote command execution RCE vulnerability via multiple parameters in the "setOpModeCfg" function. This security issue allows an attacker to take complete control of the device. In detail, exploitation allows...

9AI score0.01498EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/26 12:0 a.m.4 views

TOTOLINK A3300R 安全漏洞

The TOTOLINK A3300R is a dual-band wireless router. A command execution vulnerability exists in the TOTOLINK A3300R, which stems from a Remote Command Execution RCE vulnerability in multiple parameters of the setOpModeCfg function, which can be exploited by an attacker to execute arbitrary system...

8CVSS7.8AI score0.01498EPSS
Exploits0References3
CNVD
CNVD
added 2024/01/30 12:0 a.m.2 views

TOTOLINK N200RE Buffer Overflow Vulnerability

TOTOLINK N200RE is a SOHO wireless router that adopts 11N wireless technology, with a maximum wireless transmission rate of up to 300Mbps, supports MIMO architecture and ATCT free channel auto-detection technology, effectively improving wireless performance and stability. A buffer overflow...

8.8CVSS7.5AI score0.0125EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/01/29 12:31 p.m.32 views

CVE-2024-0997 Totolink N200RE cstecgi.cgi setOpModeCfg stack-based overflow

A vulnerability was found in Totolink N200RE 9.3.5u.6139B20201216 and classified as critical. Affected by this issue is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pppoeUser leads to stack-based buffer overflow. The attack may be launched remotely...

8.3CVSS8.9AI score0.0125EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/01/29 12:0 a.m.4 views

TOTOLINK N200RE 安全漏洞

TOTOLINK N200RE is a SOHO wireless router that adopts 11N wireless technology, with a maximum wireless transmission rate of up to 300Mbps, supports MIMO architecture and ATCT free channel auto-detection technology, effectively improving wireless performance and stability. A buffer overflow...

8.8CVSS7.4AI score0.0125EPSS
Exploits1References4
NVD
NVD
added 2024/01/23 3:15 p.m.19 views

CVE-2024-22663

TOTOLINKA3700RV9.1.2u.616520211012has a command Injection vulnerability via setOpModeCfg...

9.8CVSS9.8AI score0.01741EPSS
Exploits1References1
Prion
Prion
added 2024/01/23 3:15 p.m.19 views

Command injection

TOTOLINKA3700RV9.1.2u.616520211012has a command Injection vulnerability via setOpModeCfg...

7.5CVSS7.7AI score0.01741EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/23 12:0 a.m.4 views

PT-2024-19526 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 Description: The issue is related to a command injection vulnerability. This vulnerability can be exploited via the setOpModeCfg function. Recommendations: For TOTOLINK A3700R version 9.1.2u.6165, consider...

9.8CVSS9.5AI score0.01741EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/23 12:0 a.m.19 views

CVE-2024-22663

TOTOLINKA3700RV9.1.2u.616520211012has a command Injection vulnerability via setOpModeCfg...

9.9AI score0.01741EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/01/23 12:0 a.m.3 views

TOTOLINK A3700R 安全漏洞

The TOTOLINK A3700R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3700R is vulnerable to a command injection vulnerability that stems from the setOpModeCfg method failing to properly filter constructed command special characters, commands, and more. An attacker can...

9.8CVSS7.9AI score0.01741EPSS
Exploits1References2
OSV
OSV
added 2024/01/16 2:15 p.m.6 views

CVE-2024-0572

A vulnerability, which was classified as critical, was found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pppoeUser leads to stack-based buffer overflow. It is possible to launch the attack...

9.8CVSS6.3AI score0.01327EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/01/16 2:0 p.m.22 views

CVE-2024-0572 Totolink LR1200GB cstecgi.cgi setOpModeCfg stack-based overflow

A vulnerability, which was classified as critical, was found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pppoeUser leads to stack-based buffer overflow. It is possible to launch the attack...

9CVSS9.8AI score0.01327EPSS
Exploits0References3
CNVD
CNVD
added 2024/01/16 12:0 a.m.17 views

TOTOLINK A3700R setOpModeCfg Method Command Injection Vulnerability

The TOTOLINK A3700R is a wireless router from China's Gion Electronics TOTOLINK. A command injection vulnerability exists in TOTOLINK A3700R v9.1.2u.5822B20200513, which stems from the setOpModeCfg method failing to correctly filter constructed command special characters, commands, and so on. An...

9.8CVSS7.7AI score0.01544EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.4 views

TOTOLINK LR1200GB 安全漏洞

The TOTOLINK LR1200GB is a wireless dual-band 4G LTE router from China's TOTOLINK Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks. The TOTOLINK LR1200GB suffers from a buffer overflow vulnerability that originates from the pppoeUser parameter of the setOpModeCfg function of...

9.8CVSS8.1AI score0.01327EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.5 views

PT-2024-1270 · Totolink · Totolink Lr1200Gb

Name of the Vulnerable Software and Affected Versions: Totolink LR1200GB version 9.1.0u.6619 B20230130 Description: The issue is related to a stack-based buffer overflow in the setOpModeCfg function of the /cgi-bin/cstecgi.cgi file. This can be triggered by manipulating the pppoeUser argument,...

10CVSS9.1AI score0.01327EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/01/15 12:0 a.m.6 views

The vulnerability of the setOpModeCfg function (/cgi-bin/cstecgi.cgi) in the Totolink LR1200GB router software allows a attacker to execute arbitrary code.

The vulnerability of the setOpModeCfg function /cgi-bin/cstecgi.cgi in the Totolink LR1200GB router software exists due to the failure to implement measures to neutralize specific elements. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS7.2AI score0.04909EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/01/11 9:15 a.m.29 views

CVE-2023-52030

TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setOpModeCfg function...

9.8CVSS9.7AI score0.01544EPSS
Exploits1References1
Prion
Prion
added 2024/01/11 9:15 a.m.19 views

Command injection

TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setOpModeCfg function...

7.5CVSS8AI score0.01544EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/11 12:0 a.m.4 views

PT-2024-14364 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOlink A3700R version 9.1.2u.5822 B20200513 Description: The issue is related to a remote command execution RCE vulnerability. It can be exploited via the setOpModeCfg function. Recommendations: For TOTOlink A3700R version 9.1.2u.5822...

9.8CVSS9.5AI score0.01544EPSS
Exploits1References4
Rows per page
Query Builder