Lucene search
K

14 matches found

CNNVD
CNNVD
added 2026/03/23 12:0 a.m.8 views

TOTOLINK X6000R 操作系统命令注入漏洞

The TOTOLINK X6000R is a wireless router produced by TOTOLINK, a Chinese company. The versions TOTOLINK X6000R 9.4.0cu.1360B20241207 and 9.4.0cu.1498B20250826 contain an operating system command injection vulnerability. This vulnerability stems from incorrect handling of the parameter Hostname in...

8.8CVSS7.1AI score0.03034EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/30 8:52 p.m.3 views

CVE-2026-1723

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in TOTOLINK X6000R allows OS Command Injection.This issue affects X6000R: through V9.4.0cu.1498B20250826...

9.2CVSS5.9AI score0.00901EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/26 8:51 p.m.7 views

CVE-2025-11005

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in TOTOLINK X6000R allows OS Command Injection.This issue affects X6000R: through V9.4.0cu.1458B20250708...

9.3CVSS7.1AI score0.01331EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/25 5:47 p.m.7 views

CVE-2025-52906

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in TOTOLINK X6000R allows OS Command Injection.This issue affects X6000R: through V9.4.0cu.1360B20241207...

9.3CVSS7AI score0.13164EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/25 2:53 a.m.3 views

CVE-2025-52905

Improper Input Validation vulnerability in TOTOLINK X6000R allows Flooding.This issue affects X6000R: through V9.4.0cu.1360B20241207...

7CVSS6.9AI score0.07767EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/17 12:49 a.m.12 views

CVE-2025-52053

TOTOLINK X6000R V9.4.0cu.1360B20241207 was found to contain a command injection vulnerability in the sub417D74 function via the filename parameter. This vulnerability allows unauthenticated attackers to execute arbitrary commands via a crafted request...

9.8CVSS8.3AI score0.04374EPSS
Exploits1References1
OSV
OSV
added 2023/12/04 1:15 p.m.2 views

CVE-2023-48799

TOTOLINK-X6000R Firmware-V9.4.0cu.852B20230719 is vulnerable to Command Execution...

9.8CVSS5.8AI score0.01434EPSS
Exploits1References2
OSV
OSV
added 2023/12/01 11:15 p.m.6 views

CVE-2023-48801

In TOTOLINK X6000RFirmware V9.4.0cu.852B20230719, the shttpd file sub415534 function obtains fields from the front-end, connects them through the snprintf function, and passes them to the CsteSystem function, resulting in a command execution vulnerability...

9.8CVSS5.9AI score0.01693EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/10/31 12:0 a.m.5 views

PT-2023-30280 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X6000R version 9.4.0cu.852 B20230719 Description: A command injection issue was found via the enable parameter in the setLedCfg function. This allows for potential command injection attacks. Recommendations: For TOTOLINK X6000R versi...

9.8CVSS7.8AI score0.01515EPSS
Exploits1References4
OSV
OSV
added 2023/10/25 8:15 p.m.5 views

CVE-2023-46417

TOTOLINK X6000R v9.4.0cu.652B20230116 was discovered to contain a remote command execution RCE vulnerability via the sub415498 function...

9.8CVSS5.9AI score0.01852EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/25 8:15 p.m.4 views

CVE-2023-46411

TOTOLINK X6000R v9.4.0cu.652B20230116 was discovered to contain a command execution vulnerability via the sub415258 function...

9.8CVSS6AI score0.01391EPSS
Exploits1References3
OSV
OSV
added 2023/10/25 8:15 p.m.3 views

CVE-2023-46424

TOTOLINK X6000R v9.4.0cu.652B20230116 was discovered to contain a remote command execution RCE vulnerability via the sub422BD4 function...

9.8CVSS5.9AI score0.01852EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/10/25 12:0 a.m.6 views

TOTOLINK X6000R Command Injection Vulnerability

The TOTOLINK X6000R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK X6000R v9.4.0cu.652B20230116 version that stems from a remote command execution vulnerability in the method in the sub417094 location...

9.8CVSS7.2AI score0.01852EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/10/25 12:0 a.m.5 views

TOTOLINK X6000R Command Injection Vulnerability

The TOTOLINK X6000R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK X6000R v9.4.0cu.652B20230116 version that stems from a command execution vulnerability in the method in the sub41CC04 location...

9.8CVSS7.1AI score0.01391EPSS
Exploits1References3
Rows per page
Query Builder