Lucene search
+L

6 matches found

Cvelist
Cvelist
added 2024/07/22 12:0 a.m.23 views

CVE-2024-41315

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apclidoenrpinwps function...

0.02118EPSS
Exploits1References2
CVE
CVE
added 2024/05/14 3:58 p.m.67 views

CVE-2024-32353

CVE-2024-32353 affects TOTOLINK X5000R firmware version 9.1.0cu.2350_B20230313. A command injection exists in the setSSServer API at /cgi-bin/cstecgi.cgi via the port parameter, caused by inadequate input filtering of command characters. Impact is high (arbitrary command execution) with CVSSv3.1:...

9.8CVSS7.9AI score0.02093EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/10/31 12:0 a.m.28 views

CVE-2023-46979

TOTOLINK X6000R V9.4.0cu.852B20230719 was discovered to contain a command injection vulnerability via the enable parameter in the setLedCfg function...

10AI score0.01515EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/25 2:3 p.m.27 views

CVE-2022-37081

TOTOLINK A7000R V9.1.0u.6115B20201022 was discovered to contain a command injection vulnerability via the command parameter at setting/setTracerouteCfg...

8.1AI score0.01086EPSS
Exploits1References1
Prion
Prion
added 2022/05/10 2:15 p.m.25 views

Command injection

TOTOLink N600R V5.3c.7159B20190425 was discovered to contain a command injection vulnerability via the langtype parameter in /setting/setLanguageCfg...

10CVSS9.7AI score0.02492EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2022/03/31 12:15 a.m.20 views

CVE-2021-43663

totolink EX300v2 V4.0.3c.140B20210429 was discovered to contain a command injection vulnerability via the component cloudupdatecheck...

7.9CVSS0.00967EPSS
Exploits1References1
Rows per page
Query Builder