CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/10/28 6:59 a.m.•4 views

CVE-2025-12240

A security vulnerability has been detected in TOTOLINK A3300R 17.0.0cu.557B20221024. This affects the function setDmzCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ip leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed...

9.8CVSS6.8AI score0.0043EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-20585

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.02681EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:43 a.m.•5 views

CVE-2024-23060

TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the ip parameter in the setDmzCfg function...

9.8CVSS8AI score0.02681EPSS

Exploits1References1

Positive Technologies•added 2024/08/13 12:0 a.m.•2 views

PT-2024-30118 · Totolink · Totolink X5000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X5000r version 9.1.0cu.2350 b20230313 Description: The issue is an OS command injection vulnerability found in the /cgi-bin/cstecgi.cgi file, specifically in the setDmzCfg function. This vulnerability allows authenticated attackers t...

8.8CVSS7.5AI score0.05425EPSS

Exploits1References7