A3600r Firmware Security Vulnerabilities and Issues — A3600r Firmware CVE List

Lucene search

TotolinkA3600r Firmware

4 matches found

CVE•added 2024/07/28 11:15 p.m.•51 views

CVE-2024-7171

A vulnerability classified as critical has been found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. Affected is the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostTime leads to os command injection. It is possible to launch the attack remotely. The expl...

8.8CVSS7AI score0.07538EPSS

CVE•added 2024/07/28 3:15 p.m.•47 views

CVE-2024-7159

A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. It has been rated as critical. This issue affects some unknown processing of the file /web_cste/cgi-bin/product.ini of the component Telnet Service. The manipulation leads to use of hard-coded password. The exploit has been disclo...

8.8CVSS5.5AI score0.00088EPSS

CVE•added 2024/07/29 1:15 a.m.•45 views

CVE-2024-7175

A vulnerability has been found in TOTOLINK A3600R 4.1.2cu.5182_B20201102 and classified as critical. This vulnerability affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ipDoamin leads to os command injection. The attack can be initiated remotel...

8.8CVSS6.9AI score0.07538EPSS

CVE•added 2024/07/29 4:15 a.m.•45 views

CVE-2024-7181

A vulnerability classified as critical was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. This vulnerability affects the function setTelnetCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument telnet_enabled leads to command injection. The attack can be initiated remotely. The ex...

8.8CVSS6.9AI score0.07538EPSS