5 matches found
CVE-2025-61045
TOTOLINK X18 V9.1.0cu.2053B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the setEasyMeshAgentCfg function...
CVE-2025-61045
TOTOLINK X18 V9.1.0cu.2053B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the setEasyMeshAgentCfg function...
CVE-2025-61044
TOTOLINK X18 (firmware: 9.1.0cu.2053_B20230309) is affected by a command injection in the setEasyMeshAgentCfg function, exploitable via the agentName parameter. The vulnerability allows arbitrary command execution and is network-authless with low complexity, high impact on confidentiality, integr...
CVE-2024-57015
TOTOLINK X5000R V9.1.0cu.2350B20230313 was discovered to contain an OS command injection vulnerability via the "hour" parameter in setScheduleCfg...
TOTOLINK X5000R Operating System Command Injection Vulnerability
The TOTOLINK X5000R is a router from China's Gion Electronics TOTOLINK. An operating system command injection vulnerability exists in TOTOLINK X5000R version 9.1.0cu.2300B20230112, which stems from an operating system command injection vulnerability in component fg/setWizardCfg...