A3002r Firmware Security Vulnerabilities and Issues — A3002r Firmware CVE List

Lucene search

TotolinkA3002r Firmware

5 matches found

CVE•added 2021/08/20 5:15 p.m.•40 views

CVE-2021-34218

Directory Indexing in Login Portal of Login Portal of TOTOLINK-A702R-V1.0.0-B20161227.1023 allows attacker to access /add/ , /img/, /js/, and /mobile directories via GET Parameter.

5.3CVSS5.2AI score0.00209EPSS

CVE•added 2025/05/13 3:15 p.m.•34 views

CVE-2025-45864

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolStart parameter in the formDhcpv6s interface.

5.4CVSS7.9AI score0.00047EPSS

CVE•added 2025/05/13 3:15 p.m.•33 views

CVE-2025-45866

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolEnd parameter in the formDhcpv6s interface.

5.4CVSS7.9AI score0.00034EPSS

CVE•added 2025/05/13 3:15 p.m.•29 views

CVE-2025-45859

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface.

5.4CVSS8AI score0.00047EPSS

CVE•added 2025/05/13 3:15 p.m.•26 views

CVE-2025-45867

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the static_dns1 parameter in the formIpv6Setup interface.

5.4CVSS8AI score0.00047EPSS