4 matches found
Beastmode DDoS Botnet Exploiting New TOTOLINK Bugs to Enslave More Routers
A variant of the Mirai botnet called Beastmode has been observed adopting newly disclosed vulnerabilities in TOTOLINK routers between February and March 2022 to infect unpatched devices and expand its reach potentially. "The Beastmode aka B3astmode Mirai-based DDoS campaign has aggressively updat...
CVE-2022-26210
creationtimestamp| type| source ---|---|--- 2022-03-16 01:20:01+00:00| seen| https://t.me/cibsecurity/38990 2022-04-02 18:51:58+00:00| seen| https://t.me/NeKaspersky/2069 2022-04-04 16:37:00+00:00| seen| https://t.me/truesecator/2804 2025-04-23 09:42:57+00:00| seen|...
CVE-2022-26210
CVE-2022-26210 is a command-injection vulnerability in Totolink routers (A830R, A3100R, A950RG, A800R, A3000RU, A810R) in the setUpgradeFW function, exploitable via the FileName parameter. The affected firmware variants (e.g., A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4....
CVE-2022-26210
Totolink A830R V5.9c.4729B20191112, A3100R V4.1.2cu.5050B20200504, A950RG V4.1.2cu.5161B20200903, A800R V4.1.2cu.5137B20200730, A3000RU V5.9c.5185B20201128, and A810R V4.1.2cu.5182B20201026 were discovered to contain a command injection vulnerability in the function setUpgradeFW, via the FileName...