Lucene search
K

108 matches found

Vulnrichment
Vulnrichment
added 2022/11/23 12:0 a.m.7 views

CVE-2022-44250

TOTOLINK NR1800X V9.1.0u.6279B20210910 contains a command injection via the hostName parameter in the setOpModeCfg function...

7.5AI score0.0181EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/11/23 12:0 a.m.8 views

PT-2022-27156 · Totolink · Totolink Lr350

Name of the Vulnerable Software and Affected Versions: TOTOLINK LR350 version 9.3.5u.6369 B20220309 Description: The issue is a post-authentication buffer overflow that occurs via the pppoeUser parameter in the setOpModeCfg function. This allows for potential exploitation after authentication has...

8.8CVSS7.7AI score0.0211EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2022/11/23 12:0 a.m.5 views

PT-2022-27149 · Totolink · Totolink Nr1800X

Name of the Vulnerable Software and Affected Versions: TOTOLINK NR1800X version 9.1.0u.6279 B20210910 Description: The issue concerns a command injection via the hostName parameter in the setOpModeCfg function. This allows for potential exploitation. No information is provided about the estimated...

9.8CVSS9.5AI score0.0181EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/11/23 12:0 a.m.4 views

TOTOLINK NR1800X 操作系统命令注入漏洞

TOTOLINK NR1800X is a 5G NR indoor Wi-Fi and SIP CPE broadband access device from China's Gion Electronics TOTOLINK, which is mainly used for the deployment of NR fixed data services in homes and offices to support 5G NR network connectivity. A command injection vulnerability exists in the TOTOLI...

9.8CVSS8.5AI score0.0181EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/11/23 12:0 a.m.27 views

CVE-2022-44257

TOTOLINK LR350 V9.3.5u.6369B20220309 contains a post-authentication buffer overflow via parameter pppoeUser in the setOpModeCfg function...

9.1AI score0.0211EPSS
Exploits1References1
CNVD
CNVD
added 2022/10/10 12:0 a.m.19 views

TOTOLINK NR1800X setOpModeCfg buffer overflow vulnerability

TOTOLINK NR1800X is an excellent 5G NR indoor Wi-Fi and SIP CPE from China Gion Electronics TOTOLINK.Designed to provide fast and convenient deployment of NR fixed data services for homes and offices.TOTOLINK NR1800X V9.1.0u.6279B20210910 version is vulnerable to a buffer overflow vulnerability,...

8.8CVSS3.7AI score0.00865EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/10/06 7:15 p.m.2 views

CVE-2022-41527

TOTOLINK NR1800X V9.1.0u.6279B20210910 was discovered to contain an authenticated stack overflow via the pppoeUser parameter in the setOpModeCfg function...

8.8CVSS7.4AI score0.00865EPSS
Exploits1References2
OSV
OSV
added 2022/10/06 7:15 p.m.4 views

CVE-2022-41527

TOTOLINK NR1800X V9.1.0u.6279B20210910 was discovered to contain an authenticated stack overflow via the pppoeUser parameter in the setOpModeCfg function...

8.8CVSS5.8AI score0.00865EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/10/06 12:0 a.m.34 views

CVE-2022-41527

TOTOLINK NR1800X V9.1.0u.6279B20210910 was discovered to contain an authenticated stack overflow via the pppoeUser parameter in the setOpModeCfg function...

9AI score0.00865EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/10/06 12:0 a.m.3 views

TOTOLINK NR1800X 缓冲区错误漏洞

TOTOLINK NR1800X is an excellent 5G NR indoor Wi-Fi and SIP CPE from China Gion Electronics TOTOLINK.Designed to provide fast and convenient deployment of NR fixed data services for homes and offices.TOTOLINK NR1800X V9.1.0u.6279B20210910 version is vulnerable to a buffer overflow vulnerability,...

8.8CVSS7.4AI score0.00865EPSS
Exploits1References2
CVE
CVE
added 2022/10/06 12:0 a.m.65 views

CVE-2022-41527

TOTOLINK NR1800X (version 9.1.0u.6279_B20210910) is affected by CVE-2022-41527 due to an authenticated stack overflow in the setOpModeCfg function, triggered by the pppoeUser parameter. Descriptions across multiple sources (CNVD/CNNVD, NVD, Red Hat, CVE lists) indicate the overflow can lead to re...

8.8CVSS8.8AI score0.00865EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/08/25 3:15 p.m.4 views

CVE-2022-37079

TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

7.8CVSS5.8AI score0.01292EPSS
Exploits1References1
NVD
NVD
added 2022/08/25 3:15 p.m.25 views

CVE-2022-37079

TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

7.8CVSS0.01292EPSS
Exploits1References1
Prion
Prion
added 2022/08/25 3:15 p.m.16 views

Command injection

TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

4.3CVSS7.9AI score0.01292EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2022/08/25 2:15 p.m.18 views

CVE-2022-36485

TOTOLINK N350RT V9.3.5u.6139B20201216 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

7.8CVSS0.01099EPSS
Exploits1References1
OSV
OSV
added 2022/08/25 2:15 p.m.4 views

CVE-2022-36485

TOTOLINK N350RT V9.3.5u.6139B20201216 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

7.8CVSS5.8AI score0.01099EPSS
Exploits1References1
NVD
NVD
added 2022/08/25 2:15 p.m.23 views

CVE-2022-36461

TOTOLINK A3700R V9.1.2u.6134B20201202 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

7.8CVSS0.01292EPSS
Exploits1References1
OSV
OSV
added 2022/08/25 2:15 p.m.4 views

CVE-2022-36461

TOTOLINK A3700R V9.1.2u.6134B20201202 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

7.8CVSS5.8AI score0.01292EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/08/25 2:15 p.m.3 views

CVE-2022-36461

TOTOLINK A3700R V9.1.2u.6134B20201202 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

7.8CVSS7.6AI score0.01292EPSS
Exploits1References2
Prion
Prion
added 2022/08/25 2:15 p.m.20 views

Command injection

TOTOLINK N350RT V9.3.5u.6139B20201216 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

4.3CVSS7.9AI score0.01099EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder