CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The vulnerability of the FUN_00415aa4() function (/usr/sbin/shttpd) of the TOTOLINK X6000R router software allows a attacker to execute arbitrary commands.

The vulnerability of the FUN00415aa4 function /usr/sbin/shttpd of the TOTOLINK X6000R router operating system is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands using a specially...

10CVSS7AI score0.06239EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2024/01/16 12:0 a.m.•4 views

PT-2024-14370 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X6000R version 9.4.0cu.852 B20230719 Description: An issue in the TOTOLINK X6000R allows attackers to run arbitrary code via the sub 410118 function of the shttpd program. Recommendations: For TOTOLINK X6000R version 9.4.0cu.852...

9.8CVSS9.5AI score0.0086EPSS

Exploits1References5

Positive Technologies•added 2023/11/30 12:0 a.m.•5 views

PT-2023-7632 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X6000R version 9.4.0cu.852 B20230719 Description: The issue arises from the sub 4119A0 function in the shttpd file, which obtains fields from the front-end through the Uci Set The Str function. When these fields are passed to the...

9.8CVSS9.6AI score0.01536EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by