Lucene search
+L

4 matches found

NVD
NVD
added 2025/06/25 6:15 p.m.6 views

CVE-2025-6620

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been rated as critical. Affected by this issue is the function setUpgradeUboot of the file upgrade.so. The manipulation of the argument FileName leads to os command injection. The attack may be launched remotely. The exploit has bee...

9.8CVSS0.02695EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/06/25 6:0 p.m.26 views

CVE-2025-6620 TOTOLINK CA300-PoE upgrade.so setUpgradeUboot os command injection

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been rated as critical. Affected by this issue is the function setUpgradeUboot of the file upgrade.so. The manipulation of the argument FileName leads to os command injection. The attack may be launched remotely. The exploit has bee...

6.5CVSS0.02695EPSS
Exploits1References6
CVE
CVE
added 2025/06/25 6:0 p.m.26 views

CVE-2025-6620

CVE-2025-6620 affects TOTOLINK CA300-PoE 6.2c.884; the upgrade.so component's setUpgradeUboot function accepts a FileName argument and is vulnerable to OS command injection. The vulnerability can be exploited remotely; exploit maturity is PROD/PROOF-OF-CONCEPT per the sources. Public details are ...

9.8CVSS7.7AI score0.02695EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/25 6:0 p.m.5 views

CVE-2025-6620 TOTOLINK CA300-PoE upgrade.so setUpgradeUboot os command injection

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been rated as critical. Affected by this issue is the function setUpgradeUboot of the file upgrade.so. The manipulation of the argument FileName leads to os command injection. The attack may be launched remotely. The exploit has bee...

6.5CVSS7.7AI score0.02695EPSS
Exploits1References6
Rows per page
Query Builder