Lucene search
K

8 matches found

OSV
OSV
added 2025/12/15 5:15 p.m.4 views

CVE-2025-55893

TOTOLINK N200RE V9.3.5u.6437B20230519 is vulnerable to command Injection in setOpModeCfg via hostName...

6.5CVSS5.8AI score0.01136EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/12/15 12:0 a.m.4 views

CVE-2025-55893

TOTOLINK N200RE V9.3.5u.6437B20230519 is vulnerable to command Injection in setOpModeCfg via hostName...

7AI score0.01136EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/28 9:51 a.m.13 views

CVE-2025-12258

A vulnerability was detected in TOTOLINK A3300R 17.0.0cu.557B20221024. Impacted is the function setOpModeCfg of the file /cgi-bin/cstecgi.cg of the component POST Parameter Handler. The manipulation of the argument opmode results in stack-based buffer overflow. The attack may be performed from...

9CVSS9AI score0.0093EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.6 views

PT-2025-43917

Name of the Vulnerable Software and Affected Versions TOTOLINK A3300R version 17.0.0cu.557 B20221024 Description A flaw exists in TOTOLINK A3300R that could lead to a stack-based buffer overflow. The issue is located in the setOpModeCfg function within the /cgi-bin/cstecgi.cg file, specifically...

9CVSS6.8AI score0.0093EPSS
Exploits1References8
OSV
OSV
added 2024/01/29 1:15 p.m.5 views

CVE-2024-0997

A vulnerability was found in Totolink N200RE 9.3.5u.6139B20201216 and classified as critical. Affected by this issue is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pppoeUser leads to stack-based buffer overflow. The attack may be launched remotely...

8.8CVSS7.5AI score0.0125EPSS
Exploits1References3
CNVD
CNVD
added 2022/11/25 12:0 a.m.5 views

TOTOLINK LR350 setOpModeCfg function buffer overflow vulnerability

TOTOLINK LR350 is a 4G LTE router from China's Gion Electronics TOTOLINK that supports converting 4G signals to wired signals for home and office scenarios. A buffer overflow vulnerability exists in the TOTOLINK LR350. The vulnerability stems from a buffer overflow after authentication via the...

8.8CVSS8.6AI score0.0211EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/08/25 3:15 p.m.4 views

CVE-2022-37079

TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

7.8CVSS7.1AI score0.01292EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/08/25 12:0 a.m.4 views

TOTOLINK A7000R 操作系统命令注入漏洞

The TOTOLINK A7000R is a wireless router from China's Gion Electronics TOTOLINK. An operating system command injection vulnerability exists in TOTOLINK A7000R version V9.1.0u.6115B20201022, which stems from a command injection issue in the hostName parameter of the setOpModeCfg method...

7.8CVSS5.7AI score0.01292EPSS
Exploits1References2
Rows per page
Query Builder