A720r Firmware Security Vulnerabilities and Issues — A720r Firmware CVE List

Lucene search

TotolinkA720r Firmware

6 matches found

CVE•added 2022/02/04 2:15 a.m.•54 views

CVE-2021-44247

Totolink devices A3100R v4.1.2cu.5050_B20200504, A830R v5.9c.4729_B20191112, and A720R v4.1.5cu.470_B20200911 were discovered to contain command injection vulnerability in the function setNoticeCfg. This vulnerability allows attackers to execute arbitrary commands via the IpFrom parameter.

9.8CVSS10AI score0.2647EPSS

CVE•added 2022/02/04 2:15 a.m.•53 views

CVE-2021-44246

Totolink devices A3100R v4.1.2cu.5050_B20200504, A830R v5.9c.4729_B20191112, and A720R v4.1.5cu.470_B20200911 were discovered to contain a stack overflow in the function setNoticeCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the IpTo parameter.

7.8CVSS7.7AI score0.00407EPSS

CVE•added 2022/02/04 2:15 a.m.•48 views

CVE-2021-45740

TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a stack overflow in the setWiFiWpsStart function. This vulnerability allows attackers to cause a Denial of Service (DoS) via the pin parameter.

9.8CVSS9.5AI score0.00557EPSS

CVE•added 2022/02/04 2:15 a.m.•46 views

CVE-2021-45737

TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a stack overflow in the Form_Login function. This vulnerability allows attackers to cause a Denial of Service (DoS) via the Host parameter.

7.8CVSS7.6AI score0.00407EPSS

CVE•added 2022/02/04 2:15 a.m.•44 views

CVE-2021-45739

7.8CVSS7.6AI score0.00407EPSS

CVE•added 2022/02/04 2:15 a.m.•44 views

CVE-2021-45742

TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERY_STRING parameter.

10CVSS9.9AI score0.20315EPSS