Lucene search
K

7 matches found

redhatcve
redhatcve
added 2026/04/15 1:22 a.m.7 views

CVE-2026-6139

A vulnerability has been found in Totolink A7100RU 7.4cu.2313b20191024. This affects the function UploadOpenVpnCert of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument FileName leads to os command injection. The attack can be launched remotely. The...

10CVSS7AI score0.01823EPSS
Exploits0References1
cnvd
cnvd
added 2026/02/11 12:0 a.m.4 views

TOTOLINK A3600R Buffer Overflow Vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from the failure of apcliSsid, a parameter of the setAppEasyWizardConfig function in the /lib/cstemodules/app.so library, t...

9CVSS9AI score0.00656EPSS
Exploits1
cve
cve
added 2025/10/31 12:0 a.m.16 views

CVE-2025-63464

The CVE-2025-63464 entry concerns Totolink LR350 (v9.3.5u.6369_B20220309) with a stack overflow in the sub_42396C function caused by the ssid parameter. A crafted request can trigger a DoS. Multiple connected sources corroborate the stack overflow root cause and impact; no explicit exploitation d...

7.5CVSS7AI score0.00376EPSS
Exploits1References1Affected Software1
bdu_fstec
bdu_fstec
added 2025/04/30 12:0 a.m.6 views

The vulnerability of the setScheduleCfg function in the microprogramming software for TOTOLINK X5000R allows a hacker to execute arbitrary commands.

The vulnerability of the setScheduleCfg function in TOTOLINK X5000R router microprogramming software exists due to the lack of measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by processing the recHour parameter...

9CVSS8.4AI score0.01193EPSS
Exploits1References2Affected Software1
bdu_fstec
bdu_fstec
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the setLanguageCfg() function (/www/cgi-bin/cstecgi.cgi) in the TOTOLINK EX1200L router microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setLanguageCfg function /www/cgi-bin/cstecgi.cgi of the TOTOLINK EX1200L router software is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

9CVSS8AI score0.01475EPSS
Exploits1References5Affected Software1
ptsecurity
ptsecurity
added 2024/07/22 12:0 a.m.5 views

PT-2024-8129 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A6000R version V1.0.1-B20201211.2000 Description: The issue is related to the apcli cancel wps function in the TOTOLINK A6000R router's firmware, which fails to neutralize special elements used in an operating system command. This ca...

10CVSS8.2AI score0.02469EPSS
Exploits1References6
cnnvd
cnnvd
added 2023/12/22 12:0 a.m.5 views

TOTOLINK A3700R Security Breach

The TOTOLINK A3700R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A3700R version V9.1.2u.5822B20200513, which stems from the presence of an arbitrary command execution vulnerability...

9.8CVSS7.2AI score0.01175EPSS
Exploits1References2
Rows per page
Query Builder