Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:54 p.m.8 views

CVE-2022-32449

TOTOLINK EX300V2 V4.0.3c.7484 was discovered to contain a command injection vulnerability via the langType parameter in the setLanguageCfg function. This vulnerability is exploitable via a crafted MQTT data packet...

10CVSS7.9AI score0.18433EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/07/07 7:15 p.m.4 views

CVE-2022-32449

TOTOLINK EX300V2 V4.0.3c.7484 was discovered to contain a command injection vulnerability via the langType parameter in the setLanguageCfg function. This vulnerability is exploitable via a crafted MQTT data packet...

10CVSS7.4AI score0.18433EPSS
Exploits1References3
OSV
OSV
added 2022/07/07 7:15 p.m.2 views

CVE-2022-32449

TOTOLINK EX300V2 V4.0.3c.7484 was discovered to contain a command injection vulnerability via the langType parameter in the setLanguageCfg function. This vulnerability is exploitable via a crafted MQTT data packet...

9.8CVSS5.8AI score0.18433EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/07/07 12:0 a.m.7 views

TOTOLINK EX300 命令注入漏洞

The TOTOLINK EX300 is a 300 Mbps wireless N-range extender from China's TOTOLINK. A security vulnerability exists in TOTOLINK EX300V2 version V4.0.3c.7484, which originates from a command injection vulnerability found via the langType parameter in the setLanguageCfg function...

10CVSS8.3AI score0.18433EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/07/07 12:0 a.m.5 views

PT-2022-21325 · Totolink · Totolink Ex300 V2

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX300 V2 version 4.0.3c.7484 Description: A command injection issue was found via the langType parameter in the setLanguageCfg function. This issue can be exploited through a crafted MQTT data packet. Recommendations: For TOTOLINK...

10CVSS9.6AI score0.18433EPSS
Exploits1References6
OSV
OSV
added 2022/03/31 12:15 a.m.1 views

CVE-2021-43662

totolink EX300v2, ver V4.0.3c.140B20210429 and A720R ,ver V4.1.5cu.470B20200911 have an issue which causes uncontrolled resource consumption...

6.5CVSS5.8AI score0.00539EPSS
Exploits1References1
OSV
OSV
added 2022/03/31 12:15 a.m.3 views

CVE-2021-43661

totolink EX300v2 V4.0.3c.140B20210429 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /home.asp...

6.1CVSS5.7AI score0.00631EPSS
Exploits1References1
OSV
OSV
added 2022/03/30 11:15 p.m.4 views

CVE-2021-43664

totolink EX300v2 V4.0.3c.140B20210429 was discovered to contain a command injection vulnerability via the component process forceugpo...

8.1CVSS7.2AI score0.01668EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/03/30 12:0 a.m.4 views

TotoLink EX300 访问控制错误漏洞

TOTOLINK EX300 is a 300 Mbps wireless N range extender from TotoLink, China, and TOTOLINK EX1200T is a Wi-Fi range extender from Gion Electronics TOTOLINK, China.An access control error vulnerability exists in TOTOLINK EX300v2 and EX1200T. The vulnerability stems from the fact that the device web...

8.8CVSS5.7AI score0.04263EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/03/30 12:0 a.m.3 views

TotoLink EX300 资源管理错误漏洞

TotoLink EX300 is a 300 Mbps wireless N range extender from TotoLink China.TotoLink A720R is a gigabit dual-band wireless wifi amplifier from TotoLink China.TotoLink EX300v2 and A720R are vulnerable to a resource management error that could be exploited by an attacker to deplete storage space,...

6.5CVSS5.5AI score0.00539EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/03/30 12:0 a.m.4 views

TotoLink EX300 命令注入漏洞

TotoLink EX300 is a 300 Mbps wireless N range extender from TotoLink China.TotoLink EX300v2 V4.0.3c.140B20210429 is vulnerable to command injection, which can be exploited by unauthenticated attackers to remotely execute code as root via MitM attack...

7.9CVSS5.8AI score0.00967EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/03/30 12:0 a.m.5 views

TotoLink EX300 跨站脚本漏洞

TotoLink EX300 is a 300 Mbps wireless N range extender from TotoLink China. version TotoLink EX300v2 V4.0.3c.140B20210429 has a cross-site scripting vulnerability that can be exploited by attackers to execute JavaScript code on the client side...

6.1CVSS5.6AI score0.00631EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/03/30 12:0 a.m.4 views

TotoLink EX300 命令注入漏洞

TotoLink EX300 is a 300 Mbps wireless N range extender from TotoLink China.TotoLink EX300v2 V4.0.3c.140B20210429 version has a command injection vulnerability, which can be exploited by attackers to remotely execute code as root via MitM attack...

9.3CVSS5.9AI score0.01668EPSS
Exploits1References2
Rows per page
Query Builder