CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability was found in TOTOLINK A3000RU 5.9c.5185. It has been rated as problematic. This issue affects some unknown processing of the file /webcste/cgi-bin/product.ini. The manipulation leads to use of hard-coded password. The exploit has been disclosed to the public and may be used. The...

8.8CVSS8.7AI score0.00116EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:11 a.m.•5 views

CVE-2022-36615

TOTOLINK A3000RU V4.1.2cu.5185B20201128 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

7.8CVSS7.6AI score0.00056EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:4 a.m.•4 views

CVE-2022-25075

TOTOLink A3000RU V5.9c.2280B20180512 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERYSTRING parameter...

9.8CVSS8.6AI score0.42094EPSS

Exploits1References1

RedhatCVE•added 2025/04/26 5:26 a.m.•7 views

CVE-2025-28026

TOTOLINK A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 were found to contain a buffer overflow vulnerability in downloadFile.cgi...

7.3CVSS7.6AI score0.00141EPSS

Exploits1References1

RedhatCVE•added 2025/04/26 5:8 a.m.•11 views

CVE-2025-28027

TOTOLINK A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 was found to contain a buffer overflow vulnerability in downloadFile.cgi...

7.3CVSS7.6AI score0.00141EPSS

Exploits1References1

RedhatCVE•added 2025/04/26 5:6 a.m.•13 views

CVE-2025-28032

TOTOLINK A800R V4.1.2cu.5137B20200730, A810R V4.1.2cu.5182B20201026, A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 contain a pre-auth buffer overflow vulnerability in the setNoticeCfg function through the IpForm paramet...

7.3CVSS7.5AI score0.00141EPSS

Exploits1References1

NVD•added 2025/04/23 5:16 p.m.•8 views

CVE-2025-28028

7.3CVSS0.00164EPSS

Exploits1References2

OSV•added 2025/04/23 5:16 p.m.•0 views

CVE-2025-28028

7.3CVSS6AI score0.00164EPSS

Exploits1References2

OSV•added 2025/04/23 5:16 p.m.•1 views

CVE-2025-28025

7.3CVSS6AI score0.00148EPSS

Exploits1References2

Vulnrichment•added 2025/04/23 12:0 a.m.•7 views

CVE-2025-28028

7.6AI score0.00164EPSS

Exploits1References2

Positive Technologies•added 2025/04/23 12:0 a.m.•1 views

PT-2025-17655 · Totolink · Totolink A950Rg +3

Name of the Vulnerable Software and Affected Versions: TOTOLINK A830R version 4.1.2cu.5182 B20201102 TOTOLINK A950RG version 4.1.2cu.5161 B20200903 TOTOLINK A3000RU version 5.9c.5185 B20201128 TOTOLINK A3100R version 4.1.2cu.5247 B20211129 Description: A buffer overflow issue was discovered in th...

7.3CVSS6.9AI score0.00164EPSS

Exploits1References5

OSV•added 2025/04/22 6:15 p.m.•1 views

CVE-2025-28027

7.3CVSS6AI score0.00141EPSS

Exploits1References2

OSV•added 2025/04/22 6:15 p.m.•1 views

CVE-2025-28026

7.3CVSS6.1AI score0.00141EPSS

Exploits1References2

OSV•added 2025/04/22 2:15 p.m.•1 views

CVE-2025-28032

7.3CVSS6AI score

Exploits0References1

Vulnrichment•added 2025/04/22 12:0 a.m.•5 views

CVE-2025-28034

TOTOLINK A800R V4.1.2cu.5137B20200730, A810R V4.1.2cu.5182B20201026, A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 were found to contain a pre-auth remote command execution vulnerability in the NTPSyncWithHost function...

7.4AI score0.0279EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by