Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

86 matches found

RedhatCVE
RedhatCVEadded 2026/04/29 2:48 p.m.4 views

CVE-2026-7218

A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function iscmdstringvalid of the file /boafrm/formWsc of the component libapmib.so. Performing a manipulation of the argument localPin results in buffer overflow. The attack is possible to be carried out...

8.6CVSS7.6AI score0.00101EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/29 2:48 p.m.2 views

CVE-2026-7219

A flaw has been found in Totolink N300RT 3.4.0-B20250430. This affects an unknown function of the file /boafrm/formIpQoS. Executing a manipulation of the argument entryname can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

8.6CVSS7.5AI score0.00101EPSS
Exploits0References1
NVD
NVDadded 2026/04/28 4:16 a.m.1 views

CVE-2026-7219

A flaw has been found in Totolink N300RT 3.4.0-B20250430. This affects an unknown function of the file /boafrm/formIpQoS. Executing a manipulation of the argument entryname can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

8.6CVSS0.00101EPSS
Exploits0References5
NVD
NVDadded 2026/04/28 3:16 a.m.1 views

CVE-2026-7218

A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function iscmdstringvalid of the file /boafrm/formWsc of the component libapmib.so. Performing a manipulation of the argument localPin results in buffer overflow. The attack is possible to be carried out...

8.6CVSS0.00101EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/28 3:0 a.m.28 views

CVE-2026-7219 Totolink N300RT formIpQoS buffer overflow

A flaw has been found in Totolink N300RT 3.4.0-B20250430. This affects an unknown function of the file /boafrm/formIpQoS. Executing a manipulation of the argument entryname can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

8.6CVSS0.00101EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/28 3:0 a.m.2 views

EUVD-2026-25975

A flaw has been found in Totolink N300RT 3.4.0-B20250430. This affects an unknown function of the file /boafrm/formIpQoS. Executing a manipulation of the argument entryname can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

8.6CVSS7.5AI score0.00101EPSS
Exploits0References5
CVE
CVEadded 2026/04/28 3:0 a.m.3 views

CVE-2026-7219

In Totolink N300RT (firmware 3.4.0-B20250430), a flaw exists in the function handling /boafrm/formIpQoS. Crafting the argument entry_name can trigger a buffer overflow, potentially exploitable remotely. CVSS vectors indicate HIGH impact to confidentiality, integrity, and availability with network...

8.6CVSS5.8AI score0.00101EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/28 3:0 a.m.0 views

CVE-2026-7219

A flaw has been found in Totolink N300RT 3.4.0-B20250430. This affects an unknown function of the file /boafrm/formIpQoS. Executing a manipulation of the argument entryname can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

8.6CVSS5.8AI score0.00101EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/04/28 3:0 a.m.2 views

CVE-2026-7219 Totolink N300RT formIpQoS buffer overflow

A flaw has been found in Totolink N300RT 3.4.0-B20250430. This affects an unknown function of the file /boafrm/formIpQoS. Executing a manipulation of the argument entryname can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

8.6CVSS7.5AI score0.00101EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/28 2:45 a.m.25 views

CVE-2026-7218 Totolink N300RT libapmib.so formWsc is_cmd_string_valid buffer overflow

A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function iscmdstringvalid of the file /boafrm/formWsc of the component libapmib.so. Performing a manipulation of the argument localPin results in buffer overflow. The attack is possible to be carried out...

8.6CVSS0.00101EPSS
Exploits0References5
CVE
CVEadded 2026/04/28 2:45 a.m.6 views

CVE-2026-7218

The CVE-2026-7218 affects Totolink N300RT (version 3.4.0-B20250430). The vulnerable element is the is_cmd_string_valid function in the file /boafrm/formWsc of libapmib.so; altering the argument localPin can trigger a buffer overflow. This vulnerability can be exploited remotely, and public exploi...

8.6CVSS7.7AI score0.00101EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/28 2:45 a.m.4 views

EUVD-2026-25974

A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function iscmdstringvalid of the file /boafrm/formWsc of the component libapmib.so. Performing a manipulation of the argument localPin results in buffer overflow. The attack is possible to be carried out...

8.6CVSS7.6AI score0.00101EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/28 2:45 a.m.1 views

CVE-2026-7218

A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function iscmdstringvalid of the file /boafrm/formWsc of the component libapmib.so. Performing a manipulation of the argument localPin results in buffer overflow. The attack is possible to be carried out...

8.6CVSS7.7AI score0.00101EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/04/28 2:45 a.m.1 views

CVE-2026-7218 Totolink N300RT libapmib.so formWsc is_cmd_string_valid buffer overflow

A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function iscmdstringvalid of the file /boafrm/formWsc of the component libapmib.so. Performing a manipulation of the argument localPin results in buffer overflow. The attack is possible to be carried out...

8.6CVSS7.6AI score0.00101EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/04/28 12:0 a.m.5 views

TOTOLINK N300RT 缓冲区错误漏洞

The TOTOLINK N300RT is a wireless router from TOTOLINK Corporation that complies with the 802.11n standard. The version 3.4.0-B20250430 of the Totolink N300RT has a buffer error vulnerability. This vulnerability stems from a buffer overflow in the entryname parameter of the /boafrm/formIpQoS file...

8.6CVSS7.3AI score0.00101EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/04/28 12:0 a.m.2 views

PT-2026-35650

A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function is cmd string valid of the file /boafrm/formWsc of the component libapmib.so. Performing a manipulation of the argument localPin results in buffer overflow. The attack is possible to be carried o...

8.6CVSS5.9AI score0.00101EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2025/12/04 5:16 p.m.2 views

CVE-2025-34319

TOTOLINK N300RT wireless router firmware versions prior to V3.4.0-B20250430 discovered in V2.1.8-B20201030.1539 contain an OS command injection vulnerability in the Boa formWsc handling functionality. An unauthenticated attacker can send specially crafted requests to trigger command execution via...

9.3CVSS7.9AI score0.01911EPSS
Exploits0References1
NVD
NVDadded 2025/12/03 5:15 p.m.4 views

CVE-2025-34319

TOTOLINK N300RT wireless router firmware versions prior to V3.4.0-B20250430 discovered in V2.1.8-B20201030.1539 contain an OS command injection vulnerability in the Boa formWsc handling functionality. An unauthenticated attacker can send specially crafted requests to trigger command execution via...

9.3CVSS0.01911EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/12/03 4:49 p.m.13 views

CVE-2025-34319 TOTOLINK N300RT <= V2.1.8-B20201030.1539 Boa formWsc RCE

TOTOLINK N300RT wireless router firmware versions prior to V3.4.0-B20250430 discovered in V2.1.8-B20201030.1539 contain an OS command injection vulnerability in the Boa formWsc handling functionality. An unauthenticated attacker can send specially crafted requests to trigger command execution via...

9.3CVSS0.01911EPSS
Exploits0References3
CVE
CVEadded 2025/12/03 4:49 p.m.12 views

CVE-2025-34319

TOTOLINK N300RT devices with firmware older than V3.4.0-B20250430 are affected by an OS command injection in the Boa formWsc handling functionality (discovered in V2.1.8-B20201030.1539). The vulnerability allows an unauthenticated attacker to execute commands via the targetAPSsid request paramete...

9.3CVSS7.5AI score0.01911EPSS
Exploits0References3
Rows per page
Query Builder