15280 matches found
Command injection
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setDiagnosisCfg function...
Command injection
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the UploadFirmwareFile function...
Command injection
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the NTPSyncWithHost function...
Command injection
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setOpModeCfg function...
Command injection
TOTOlink EX1200T V4.1.2cu.5232B20210713 was discovered to contain a remote command execution RCE vulnerability via the "main" function...
Command injection
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setTracerouteCfg function...
CVE-2023-52032
TOTOlink EX1200T V4.1.2cu.5232B20210713 was discovered to contain a remote command execution RCE vulnerability via the "main" function...
CVE-2023-52029
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setDiagnosisCfg function...
CVE-2023-52031
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the UploadFirmwareFile function...
CVE-2023-52032
TOTOlink EX1200T V4.1.2cu.5232B20210713 was discovered to contain a remote command execution RCE vulnerability via the "main" function...
CVE-2023-52027
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the NTPSyncWithHost function...
PT-2024-14363 · Totolink · Totolink A3700R
Name of the Vulnerable Software and Affected Versions: TOTOlink A3700R version 9.1.2u.5822 B20200513 Description: The issue is related to a remote command execution RCE vulnerability. This vulnerability can be exploited via the setDiagnosisCfg function. Recommendations: For TOTOlink A3700R versio...
CVE-2023-52028
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setTracerouteCfg function...
PT-2024-14361 · Totolink · Totolink A3700R
Name of the Vulnerable Software and Affected Versions: TOTOlink A3700R version 9.1.2u.5822 B20200513 Description: The issue is related to a remote command execution RCE vulnerability. It can be exploited via the NTPSyncWithHost function. Recommendations: For version 9.1.2u.5822 B20200513, conside...
CVE-2023-52027
CVE-2023-52027 affects TOTOLINK A3700R (v9.1.2u.5822_B20200513). The NTPSyncWithHost function allows remote command execution due to insufficient filtering of constructed commands, enabling arbitrary commands to be run by an attacker with network access. Public sources corroborate RCE via NTPSync...
CVE-2023-52028
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setTracerouteCfg function...
PT-2024-14362 · Totolink · Totolink A3700R
Name of the Vulnerable Software and Affected Versions: TOTOlink A3700R version 9.1.2u.5822 B20200513 Description: The issue is related to a remote command execution RCE vulnerability. It can be exploited via the setTracerouteCfg function. Recommendations: For TOTOlink A3700R version 9.1.2u.5822...
CVE-2023-52030
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the setOpModeCfg function...
CVE-2023-52027
TOTOlink A3700R v9.1.2u.5822B20200513 was discovered to contain a remote command execution RCE vulnerability via the NTPSyncWithHost function...
CVE-2023-52030
The CVE-2023-52030 issue affects TOTOLINK A3700R, specifically v9.1.2u.5822_B20200513, where the setOpModeCfg function permits remote command execution (RCE). Public sources describe a command-injection path through setOpModeCfg, enabling arbitrary command execution on the device. The vulnerabili...