A6000r Firmware Security Vulnerabilities and Issues — A6000r Firmware CVE List

Lucene search

TotolinkA6000r Firmware

5 matches found

CVE•added 2025/04/04 2:15 p.m.•52 views

CVE-2025-3249

A vulnerability classified as critical was found in TOTOLINK A6000R 1.0.1-B20201211.2000. Affected by this vulnerability is the function apcli_cancel_wps of the file /usr/lib/lua/luci/controller/mtkwifi.lua. The manipulation leads to command injection. The attack can be launched remotely. The explo...

9.8CVSS6.9AI score0.01249EPSS

CVE•added 2025/01/10 5:15 p.m.•40 views

CVE-2024-57214

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the devname parameter in the reset_wifi function.

6.3CVSS8.2AI score0.02271EPSS

CVE•added 2025/01/10 5:15 p.m.•39 views

CVE-2024-57213

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the newpasswd parameter in the action_passwd function.

6.3CVSS8.2AI score0.02271EPSS

CVE•added 2025/01/10 5:15 p.m.•38 views

CVE-2024-57212

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the opmode parameter in the action_reboot function.

5.1CVSS8.2AI score0.02281EPSS

CVE•added 2025/01/10 5:15 p.m.•36 views

CVE-2024-57211

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the modifyOne parameter in the enable_wsh function.

8CVSS8.2AI score0.01262EPSS