Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/06/27 6:18 p.m.16 views

CVE-2025-6619

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been declared as critical. Affected by this vulnerability is the function setUpgradeFW of the file upgrade.so. The manipulation of the argument FileName leads to os command injection. The attack can be launched remotely. The exploit...

9.8CVSS7.8AI score0.02687EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/06/25 5:31 p.m.6 views

CVE-2025-6619 TOTOLINK CA300-PoE upgrade.so setUpgradeFW os command injection

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been declared as critical. Affected by this vulnerability is the function setUpgradeFW of the file upgrade.so. The manipulation of the argument FileName leads to os command injection. The attack can be launched remotely. The exploit...

6.5CVSS7.7AI score0.02687EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/06/25 5:31 p.m.21 views

CVE-2025-6619 TOTOLINK CA300-PoE upgrade.so setUpgradeFW os command injection

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been declared as critical. Affected by this vulnerability is the function setUpgradeFW of the file upgrade.so. The manipulation of the argument FileName leads to os command injection. The attack can be launched remotely. The exploit...

6.5CVSS0.02687EPSS
Exploits1References6
CVE
CVE
added 2025/06/25 5:31 p.m.28 views

CVE-2025-6619

CVE-2025-6619 applies to TOTOLINK CA300-PoE firmware 6.2c.884. The vulnerability is in the upgrade.so module, in the setUpgradeFW function, where improper handling of the FileName argument enables OS command injection . Exploitation is possible remotely, and multiple sources describe public discl...

9.8CVSS7.7AI score0.02687EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder