4 matches found
CVE-2025-3675
creationtimestamp| type| source ---|---|--- 2025-04-16 07:55:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11994 2025-04-16 10:43:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmwfuri5bj2b 2025-04-16 11:51:01+00:00| seen|...
CVE-2025-3675
A vulnerability was found in TOTOLINK A3700R 9.1.2u.5822B20200513. It has been rated as critical. Affected by this issue is the function setL2tpServerCfg of the file /cgi-bin/cstecgi.cgi. The manipulation leads to improper access controls. The attack may be launched remotely. The exploit has been...
CVE-2025-3675 TOTOLINK A3700R cstecgi.cgi setL2tpServerCfg access control
A vulnerability was found in TOTOLINK A3700R 9.1.2u.5822B20200513. It has been rated as critical. Affected by this issue is the function setL2tpServerCfg of the file /cgi-bin/cstecgi.cgi. The manipulation leads to improper access controls. The attack may be launched remotely. The exploit has been...
CVE-2025-3675
The vulnerability CVE-2025-3675 affects TOTOLINK A3700R (firmware 9.1.2u.5822_B20200513). The issue resides in the setL2tpServerCfg function in /cgi-bin/cstecgi.cgi, where improper access controls can be exploited remotely. Multiple connected sources confirm the root cause and the potential for r...