A6000r Firmware Security Vulnerabilities and Issues — A6000r Firmware CVE List

Lucene search

TotolinkA6000r Firmware

4 matches found

CVE•added 2025/04/04 2:15 p.m.•52 views

CVE-2025-3249

A vulnerability classified as critical was found in TOTOLINK A6000R 1.0.1-B20201211.2000. Affected by this vulnerability is the function apcli_cancel_wps of the file /usr/lib/lua/luci/controller/mtkwifi.lua. The manipulation leads to command injection. The attack can be launched remotely. The explo...

9.8CVSS6.9AI score0.01249EPSS

CVE•added 2024/07/23 3:15 p.m.•47 views

CVE-2024-41319

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the cmd parameter in the webcmd function.

9.8CVSS8AI score0.59691EPSS

CVE•added 2024/07/22 2:15 p.m.•40 views

CVE-2024-41316

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_cancel_wps function.

9.8CVSS7.8AI score0.12775EPSS

CVE•added 2024/07/22 2:15 p.m.•39 views

CVE-2024-41318

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_wps_gen_pincode function.

9.8CVSS7.8AI score0.16412EPSS