CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. This issue affects the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument LangType leads to stack-based buffer overflow. The attack may be initiated...

9.3CVSS6.4AI score0.00995EPSS

Exploits1References5

Vulnrichment•added 2025/06/04 5:31 p.m.•9 views

CVE-2025-5600 TOTOLINK EX1200T cstecgi.cgi setLanguageCfg stack-based overflow

10CVSS9.7AI score0.00995EPSS

Exploits1References5

Positive Technologies•added 2025/06/04 12:0 a.m.•5 views

PT-2025-23835 · Totolink · Totolink Ex1200T

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical vulnerability has been found in the setLanguageCfg function of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument LangType leads to a stack-based buffer...

10CVSS9.5AI score0.00995EPSS

Exploits1References13

RedhatCVE•added 2025/05/23 9:34 a.m.•5 views

CVE-2024-22660

TOTOLINKA3700RV9.1.2u.616520211012has a stack overflow vulnerability via setLanguageCfg...

9.8CVSS7.4AI score0.00862EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 4:11 a.m.•5 views

CVE-2023-39617

TOTOLINK X5000RV9.1.0cu.2089B20211224 and X5000RV9.1.0cu.2350B20230313 were discovered to contain a remote code execution RCE vulnerability via the lang parameter in the setLanguageCfg function...

9.8CVSS8.4AI score0.01391EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:29 p.m.•2 views

CVE-2022-41517

TOTOLINK NR1800X V9.1.0u.6279B20210910 was discovered to contain a stack overflow in the lang parameter in the setLanguageCfg function...

8.8CVSS9AI score0.00848EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:19 p.m.•2 views

CVE-2022-37078

TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a command injection vulnerability via the lang parameter at /setting/setLanguageCfg...

7.8CVSS7.1AI score0.00973EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:11 p.m.•5 views

CVE-2022-36482

TOTOLINK N350RT V9.3.5u.6139B20201216 was discovered to contain a command injection vulnerability via the lang parameter in the function setLanguageCfg...

7.8CVSS8AI score0.00985EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:8 p.m.•6 views

CVE-2022-36462

TOTOLINK A3700R V9.1.2u.6134B20201202 was discovered to contain a stack overflow via the lang parameter in the function setLanguageCfg...

7.8CVSS7.9AI score0.00304EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:43 p.m.•4 views

CVE-2022-28906

TOTOLink N600R V5.3c.7159B20190425 was discovered to contain a command injection vulnerability via the langtype parameter in /setting/setLanguageCfg...

10CVSS7.9AI score0.02463EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 9:59 p.m.•6 views

CVE-2022-44256

TOTOLINK LR350 V9.3.5u.6369B20220309 contains a post-authentication buffer overflow via parameter lang in the setLanguageCfg function...

8.8CVSS7.5AI score0.0211EPSS

Exploits1References1

BDU FSTEC•added 2025/02/25 12:0 a.m.•4 views

The vulnerability of the setLanguageCfg() function in TOTOLINK CP450 router microprogramming software allows a intruder to trigger a service failure.

The vulnerability of the setLanguageCfg function in TOTOLINK CP450 router microprogramming software is related to the issue of the operation exceeding the buffer in memory when processing the langType parameter. Exploiting this vulnerability can allow a malicious actor to cause service failures...

5.5CVSS5.7AI score0.00586EPSS

Exploits1References3Affected Software1

RedhatCVE•added 2025/02/14 6:31 a.m.•12 views

CVE-2024-34203

TOTOLINK CP450 v4.1.0cu.747B20191224 was discovered to contain a stack buffer overflow vulnerability in the setLanguageCfg function...

3.8CVSS7.7AI score0.00586EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by