Lucene search
K

12 matches found

CNNVD
CNNVD
added 2026/05/08 12:0 a.m.10 views

TOTOLINK X5000R 缓冲区错误漏洞

The TOTOLINK X5000R is a router produced by TOTOLINK, a Chinese electronics company. The version 9.1.0u.6369B20230113 of the Totolink X5000R contains a buffer error vulnerability. This vulnerability stems from improper handling of the submit-url parameter in the function sub458E40 within the...

9CVSS7.7AI score0.00463EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.10 views

PT-2026-3936

A weakness has been identified in Totolink NR1800X 9.1.0u.6279 B20210910. This vulnerability affects the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. This manipulation of the argument Hostname causes command injection. The attack can be initiated...

6.5CVSS5.5AI score0.03212EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/08/15 12:30 a.m.5 views

CVE-2025-51452

In TOTOLINK A7000R firmware 9.1.0u.6115B20201022, an attacker can bypass login by sending a specific request through formLoginAuth.htm...

9.8CVSS7.4AI score0.00359EPSS
Exploits0References1
OSV
OSV
added 2025/08/13 4:15 p.m.4 views

CVE-2025-51452

In TOTOLINK A7000R firmware 9.1.0u.6115B20201022, an attacker can bypass login by sending a specific request through formLoginAuth.htm...

9.8CVSS5.8AI score
Exploits0References3
OSV
OSV
added 2025/02/21 7:15 p.m.4 views

CVE-2025-25604

Totolink X5000R V9.1.0u.6369B20230113 is vulnerable to command injection via the vifdisable function in mtkwifi.lua...

6.5CVSS5.8AI score0.00825EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/10/31 12:0 a.m.5 views

PT-2023-30278 · Totolink · Totolink Lr1200Gb

Name of the Vulnerable Software and Affected Versions: TOTOLINK LR1200GB version 9.1.0u.6619 B20230130 Description: A stack overflow issue was discovered via the password parameter in the loginAuth function. This issue can be exploited, potentially allowing unauthorized access. Recommendations: F...

9.8CVSS7.4AI score0.08655EPSS
Exploits1References4
OSV
OSV
added 2023/05/31 1:15 p.m.3 views

CVE-2023-33485

TOTOLINK X5000R V9.1.0u.6118B20201102 and V9.1.0u.6369B20230113 contains a post-authentication buffer overflow via parameter sPort/ePort in the addEffect function...

8.8CVSS6AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/05/31 1:15 p.m.7 views

CVE-2023-33485

TOTOLINK X5000R V9.1.0u.6118B20201102 and V9.1.0u.6369B20230113 contains a post-authentication buffer overflow via parameter sPort/ePort in the addEffect function...

8.8CVSS6AI score0.01062EPSS
Exploits1References2
OSV
OSV
added 2022/10/06 7:15 p.m.3 views

CVE-2022-41528

TOTOLINK NR1800X V9.1.0u.6279B20210910 was discovered to contain an authenticated stack overflow via the text parameter in the setSmsCfg function...

8.8CVSS5.8AI score0.00865EPSS
Exploits1References1
OSV
OSV
added 2022/08/25 3:15 p.m.5 views

CVE-2022-37084

TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow via the sPort parameter at the addEffect function...

7.8CVSS5.8AI score0.00327EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/08/25 3:15 p.m.5 views

CVE-2022-37084

TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow via the sPort parameter at the addEffect function...

7.8CVSS7.2AI score0.00327EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/03/15 12:0 a.m.5 views

PT-2022-17727 · Totolink · Totolink X5000R

Name of the Vulnerable Software and Affected Versions: Totolink X5000R Firmware version 9.1.0u.6118 B20201102 Description: The issue is related to a command injection vulnerability in the setNtpCfg function, specifically via the tz parameters. This allows attackers to execute arbitrary commands b...

9.8CVSS9.9AI score0.2558EPSS
Exploits1References3
Rows per page
Query Builder