7 matches found
CVE-2026-6139
A vulnerability has been found in Totolink A7100RU 7.4cu.2313b20191024. This affects the function UploadOpenVpnCert of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument FileName leads to os command injection. The attack can be launched remotely. The...
TOTOLINK A3600R Buffer Overflow Vulnerability
TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from the failure of apcliSsid, a parameter of the setAppEasyWizardConfig function in the /lib/cstemodules/app.so library, t...
CVE-2025-63464
The CVE-2025-63464 entry concerns Totolink LR350 (v9.3.5u.6369_B20220309) with a stack overflow in the sub_42396C function caused by the ssid parameter. A crafted request can trigger a DoS. Multiple connected sources corroborate the stack overflow root cause and impact; no explicit exploitation d...
The vulnerability of the setScheduleCfg function in the microprogramming software for TOTOLINK X5000R allows a hacker to execute arbitrary commands.
The vulnerability of the setScheduleCfg function in TOTOLINK X5000R router microprogramming software exists due to the lack of measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by processing the recHour parameter...
The vulnerability of the setLanguageCfg() function (/www/cgi-bin/cstecgi.cgi) in the TOTOLINK EX1200L router microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the setLanguageCfg function /www/cgi-bin/cstecgi.cgi of the TOTOLINK EX1200L router software is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...
PT-2024-8129 · Totolink · Totolink X6000R
Name of the Vulnerable Software and Affected Versions: TOTOLINK A6000R version V1.0.1-B20201211.2000 Description: The issue is related to the apcli cancel wps function in the TOTOLINK A6000R router's firmware, which fails to neutralize special elements used in an operating system command. This ca...
TOTOLINK A3700R Security Breach
The TOTOLINK A3700R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A3700R version V9.1.2u.5822B20200513, which stems from the presence of an arbitrary command execution vulnerability...