A3300r Firmware Security Vulnerabilities and Issues — A3300r Firmware CVE List

Lucene search

TotolinkA3300r Firmware

15 matches found

CVE•added 2024/01/30 3:15 p.m.•164 views

CVE-2024-24329

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setPortForwardRules function.

9.8CVSS9.7AI score0.83293EPSS

CVE•added 2024/01/30 3:15 p.m.•151 views

CVE-2024-24325

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setParentalRules function.

9.8CVSS9.7AI score0.02742EPSS

CVE•added 2024/01/30 3:15 p.m.•146 views

CVE-2024-24326

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the arpEnable parameter in the setStaticDhcpRules function.

9.8CVSS9.7AI score0.01454EPSS

CVE•added 2024/01/30 3:15 p.m.•145 views

CVE-2024-24328

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setMacFilterRules function.

9.8CVSS9.7AI score0.84416EPSS

CVE•added 2024/01/30 3:15 p.m.•145 views

CVE-2024-24332

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the url parameter in the setUrlFilterRules function.

9.8CVSS9.7AI score0.02742EPSS

CVE•added 2024/01/30 3:15 p.m.•143 views

CVE-2024-24331

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setWiFiScheduleCfg function.

9.8CVSS9.7AI score0.01579EPSS

CVE•added 2024/01/11 4:15 p.m.•50 views

CVE-2024-23058

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the pass parameter in the setTr069Cfg function.

9.8CVSS9.8AI score0.0313EPSS

CVE•added 2024/01/30 3:15 p.m.•43 views

CVE-2024-24333

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the desc parameter in the setWiFiAclRules function.

9.8CVSS9.7AI score0.02742EPSS

CVE•added 2024/01/30 3:15 p.m.•41 views

CVE-2024-24327

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the pppoePass parameter in the setIpv6Cfg function.

9.8CVSS9.7AI score0.01454EPSS

CVE•added 2024/01/30 3:15 p.m.•41 views

CVE-2024-24330

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the port or enable parameter in the setRemoteCfg function.

9.8CVSS9.7AI score0.01579EPSS

CVE•added 2024/01/11 4:15 p.m.•39 views

CVE-2024-22942

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the hostName parameter in the setWanCfg function.

9.8CVSS9.7AI score0.0313EPSS

CVE•added 2024/01/11 4:15 p.m.•39 views

CVE-2024-23059

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the username parameter in the setDdnsCfg function.

9.8CVSS9.7AI score0.02304EPSS

CVE•added 2024/01/11 4:15 p.m.•39 views

CVE-2024-23060

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the ip parameter in the setDmzCfg function.

9.8CVSS9.7AI score0.02304EPSS

CVE•added 2024/01/11 4:15 p.m.•38 views

CVE-2024-23057

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the tz parameter in the setNtpCfg function.

9.8CVSS9.7AI score0.0313EPSS

CVE•added 2024/01/11 4:15 p.m.•36 views

CVE-2024-23061

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the minute parameter in the setScheduleCfg function.

9.8CVSS9.7AI score0.02304EPSS