8 matches found
CVE-2025-55893
TOTOLINK N200RE V9.3.5u.6437B20230519 is vulnerable to command Injection in setOpModeCfg via hostName...
CVE-2025-55893
TOTOLINK N200RE V9.3.5u.6437B20230519 is vulnerable to command Injection in setOpModeCfg via hostName...
CVE-2025-12258
A vulnerability was detected in TOTOLINK A3300R 17.0.0cu.557B20221024. Impacted is the function setOpModeCfg of the file /cgi-bin/cstecgi.cg of the component POST Parameter Handler. The manipulation of the argument opmode results in stack-based buffer overflow. The attack may be performed from...
PT-2025-43917
Name of the Vulnerable Software and Affected Versions TOTOLINK A3300R version 17.0.0cu.557 B20221024 Description A flaw exists in TOTOLINK A3300R that could lead to a stack-based buffer overflow. The issue is located in the setOpModeCfg function within the /cgi-bin/cstecgi.cg file, specifically...
CVE-2024-0997
A vulnerability was found in Totolink N200RE 9.3.5u.6139B20201216 and classified as critical. Affected by this issue is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument pppoeUser leads to stack-based buffer overflow. The attack may be launched remotely...
TOTOLINK LR350 setOpModeCfg function buffer overflow vulnerability
TOTOLINK LR350 is a 4G LTE router from China's Gion Electronics TOTOLINK that supports converting 4G signals to wired signals for home and office scenarios. A buffer overflow vulnerability exists in the TOTOLINK LR350. The vulnerability stems from a buffer overflow after authentication via the...
CVE-2022-37079
TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...
TOTOLINK A7000R 操作系统命令注入漏洞
The TOTOLINK A7000R is a wireless router from China's Gion Electronics TOTOLINK. An operating system command injection vulnerability exists in TOTOLINK A7000R version V9.1.0u.6115B20201022, which stems from a command injection issue in the hostName parameter of the setOpModeCfg method...