Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.8 views

PT-2025-1232 · Totolink · Totolink X5000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X5000R version 9.1.0cu.2350 B20230313 Description: The issue is related to an OS command injection vulnerability. This vulnerability can be exploited via the limit parameter in the setVpnAccountCfg function. The vulnerability allows ...

10CVSS9.8AI score0.01573EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/08/12 12:0 a.m.15 views

PT-2024-30122 · Totolink · Totolink X5000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X5000r version 9.1.0cu.2350 b20230313 Description: The issue is related to an OS command injection vulnerability in the setL2tpServerCfg function within the /cgi-bin/cstecgi.cgi file. Authenticated attackers can exploit this by sendi...

8.8CVSS7.7AI score0.01168EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.6 views

PT-2024-24527 · Totolink · Totolink X5000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X5000R version 9.1.0cu.2350 B20230313 Description: The issue is an authenticated remote command execution vulnerability. It can be exploited via the ipsecPsk parameter in the "cstecgi.cgi" binary. Recommendations: For TOTOLINK X5000R...

8.8CVSS7.4AI score0.02175EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/05/13 7:23 p.m.15 views

CVE-2024-34921

TOTOLINK X5000R v9.1.0cu.2350B20230313 was discovered to contain a command injection via the disconnectVPN function...

7.8AI score0.09253EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/05/13 12:0 a.m.5 views

PT-2024-24532 · Totolink · Totolink X5000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X5000R version 9.1.0cu.2350 B20230313 Description: A command injection issue was found, related to the setSSServer function, specifically via the password parameter. Recommendations: For TOTOLINK X5000R version 9.1.0cu.2350 B20230313...

8CVSS7.8AI score0.01831EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.5 views

PT-2023-4213 · Totolink · Totolink X5000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X5000R version 9.1.0cu.2350 B20230313 Description: The issue is related to a command injection vulnerability via the setWanCfg function. This vulnerability is associated with a lack of input data sanitization measures in the TOTOLINK...

9.8CVSS8.2AI score0.03083EPSS
Exploits1References9
Rows per page
Query Builder