Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Totolink Security Vulnerabilities

cve
cve

CVE-2024-23059

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the username parameter in the setDdnsCfg function.

9.8CVSS

9.7AI Score

0.066EPSS

2024-01-11 04:15 PM
16
cve
cve

CVE-2024-23060

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the ip parameter in the setDmzCfg function.

9.8CVSS

9.7AI Score

0.066EPSS

2024-01-11 04:15 PM
9
cve
cve

CVE-2024-23061

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the minute parameter in the setScheduleCfg function.

9.8CVSS

9.7AI Score

0.066EPSS

2024-01-11 04:15 PM
12
cve
cve

CVE-2024-24324

TOTOLINK A8000RU v7.1cu.643_B20200521 was discovered to contain a hardcoded password for root stored in /etc/shadow.

9.8CVSS

9.5AI Score

0.049EPSS

2024-01-30 03:15 PM
11
cve
cve

CVE-2024-24325

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setParentalRules function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
66
cve
cve

CVE-2024-24326

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the arpEnable parameter in the setStaticDhcpRules function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
61
cve
cve

CVE-2024-24327

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the pppoePass parameter in the setIpv6Cfg function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
14
cve
cve

CVE-2024-24328

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setMacFilterRules function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
64
cve
cve

CVE-2024-24329

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setPortForwardRules function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
71
cve
cve

CVE-2024-24330

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the port or enable parameter in the setRemoteCfg function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
12
cve
cve

CVE-2024-24331

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setWiFiScheduleCfg function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
64
cve
cve

CVE-2024-24332

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the url parameter in the setUrlFilterRules function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
61
cve
cve

CVE-2024-24333

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the desc parameter in the setWiFiAclRules function.

9.8CVSS

9.7AI Score

0.01EPSS

2024-01-30 03:15 PM
15
Total number of security vulnerabilities513