Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

OSV
OSVadded 2025/12/15 5:15 p.m.3 views

CVE-2025-55893

TOTOLINK N200RE V9.3.5u.6437B20230519 is vulnerable to command Injection in setOpModeCfg via hostName...

6.5CVSS5.8AI score0.01136EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/12/15 12:0 a.m.3 views

CVE-2025-55893

TOTOLINK N200RE V9.3.5u.6437B20230519 is vulnerable to command Injection in setOpModeCfg via hostName...

7AI score0.01136EPSS
Exploits1References2
Microsoft CVE
Microsoft CVEadded 2025/11/28 1:1 a.m.3 views

wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start()

...

7.8CVSS7AI score0.00148EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/10/28 9:51 a.m.11 views

CVE-2025-12258

A vulnerability was detected in TOTOLINK A3300R 17.0.0cu.557B20221024. Impacted is the function setOpModeCfg of the file /cgi-bin/cstecgi.cg of the component POST Parameter Handler. The manipulation of the argument opmode results in stack-based buffer overflow. The attack may be performed from...

9CVSS9AI score0.00843EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.3 views

PT-2025-43917

Name of the Vulnerable Software and Affected Versions TOTOLINK A3300R version 17.0.0cu.557 B20221024 Description A flaw exists in TOTOLINK A3300R that could lead to a stack-based buffer overflow. The issue is located in the setOpModeCfg function within the /cgi-bin/cstecgi.cg file, specifically...

9CVSS6.8AI score0.00843EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-24104

Malicious code in bioql PyPI...

9CVSS8.8AI score0.00871EPSS
Exploits1References6
SUSE CVE
SUSE CVEadded 2025/08/22 11:28 p.m.2 views

SUSE CVE-2025-38656

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwlopmodedvmstart Preserve the error code if iwlsetupdeferredwork fails. The current code returns ERRPTR0 which is NULL on this path. I believe the missing error code potentially leads to a use...

5.5CVSS6.7AI score0.00148EPSS
Exploits0References23
Cvelist
Cvelistadded 2025/08/22 4:0 p.m.7 views

CVE-2025-38656 wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start()

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwlopmodedvmstart Preserve the error code if iwlsetupdeferredwork fails. The current code returns ERRPTR0 which is NULL on this path. I believe the missing error code potentially leads to a use...

0.00148EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/08/22 12:0 a.m.4 views

PT-2025-34417

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue within the iwlwifi module related to error handling in the iwl op mode dvm start function. Specifically, the code was returning an incorrect error co...

7.8CVSS7.9AI score0.02838EPSS
Exploits3References240
OSV
OSVadded 2025/08/11 1:15 a.m.2 views

CVE-2025-8822

A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected is the function algDisable of the file /goform/setOpMode. The manipulation of the argument opMode leads to stack-based buffer overflow. It is possible to launch the attack remotely...

8.7CVSS6.2AI score0.00871EPSS
Exploits1References6
NVD
NVDadded 2025/08/11 1:15 a.m.4 views

CVE-2025-8822

A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected is the function algDisable of the file /goform/setOpMode. The manipulation of the argument opMode leads to stack-based buffer overflow. It is possible to launch the attack remotely...

9CVSS0.00871EPSS
Exploits1References6
OSV
OSVadded 2025/08/10 4:15 p.m.3 views

CVE-2025-8816

A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected is the function setOpMode of the file /goform/setOpMode. The manipulation of the argument ethConv leads to stack-based buffer overflow. It is possible to launch the attack remotely...

8.7CVSS6.3AI score
Exploits0References6
BDU FSTEC
BDU FSTECadded 2024/01/30 12:0 a.m.4 views

The vulnerability of the setOpModeCfg() function in the cstecgi.cgi script of the Totolink N200RE router’s microprogramming system, which allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setOpModeCfg function in the cstecgi.cgi script of the Totolink N200RE router’s microprogramming system is related to the issue of operations going beyond the buffer boundaries in memory when processing the pppoeUser parameter. Exploiting this vulnerability could allow an...

9CVSS7.3AI score0.0125EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2024/01/29 1:15 p.m.3 views

CVE-2024-0997

A vulnerability was found in Totolink N200RE 9.3.5u.6139B20201216 and classified as critical. Affected by this issue is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pppoeUser leads to stack-based buffer overflow. The attack may be launched remotely...

8.8CVSS7.5AI score0.0125EPSS
Exploits1References3
CNVD
CNVDadded 2024/01/24 12:0 a.m.4 views

TOTOLINK LR1200GB setOpModeCfg function buffer overflow vulnerability

The TOTOLINK LR1200GB is a wireless dual-band 4G LTE router from China's TOTOLINK Electronics TOTOLINK that supports 2.4GHz and 5GHz dual-band networks. The TOTOLINK LR1200GB suffers from a buffer overflow vulnerability that originates from the pppoeUser parameter of the setOpModeCfg function of...

9.8CVSS8.2AI score0.01327EPSS
Exploits0References1
OSV
OSVadded 2024/01/23 3:15 p.m.4 views

CVE-2024-22663

TOTOLINKA3700RV9.1.2u.616520211012has a command Injection vulnerability via setOpModeCfg...

9.8CVSS5.8AI score0.01741EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2023/12/22 7:15 p.m.1 views

CVE-2023-51033

TOTOlink EX1200L V9.3.5u.6146B20201023 is vulnerable to arbitrary command execution via the cstecgi.cgi setOpModeCfg interface...

9.8CVSS6.1AI score0.01049EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/07/07 12:0 a.m.3 views

PT-2023-3896 · Totolink · Totolink Lr350

Name of the Vulnerable Software and Affected Versions: TOTOLINK LR350 version 9.3.5u.6369 B20220309 Description: The issue is related to a command injection vulnerability via the hostname parameter in the setOpModeCfg function. This vulnerability is associated with a lack of input data...

9.8CVSS9.6AI score0.01674EPSS
Exploits1References7
OSV
OSVadded 2023/04/14 2:15 p.m.2 views

CVE-2023-29799

TOTOLINK X18 V9.1.0cu.2024B20220329 was discovered to contain a command injection vulnerability via the hostname parameter in the setOpModeCfg function...

9.8CVSS7.3AI score0.0203EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/04/14 12:0 a.m.6 views

TOTOLINK X18 命令注入漏洞

The TOTOLINK X18 is a mesh router system from China's Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK X18 version V9.1.0cu.2024B20220329, which originates from a command injection vulnerability via the hostname parameter in the setOpModeCfg function...

9.8CVSS8.5AI score0.0203EPSS
Exploits1References2
Rows per page
Query Builder