A720r Firmware Security Vulnerabilities and Issues — A720r Firmware CVE List

Lucene search

TotolinkA720r Firmware

5 matches found

CVE•added 2021/08/05 9:15 p.m.•57 views

CVE-2021-35327

A vulnerability in TOTOLINK A720R A720R_Firmware v4.1.5cu.470_B20200911 allows attackers to start the Telnet service, then login with the default credentials via a crafted POST request.

9.8CVSS9.2AI score0.00443EPSS

CVE•added 2022/02/04 2:15 a.m.•54 views

CVE-2021-44247

Totolink devices A3100R v4.1.2cu.5050_B20200504, A830R v5.9c.4729_B20191112, and A720R v4.1.5cu.470_B20200911 were discovered to contain command injection vulnerability in the function setNoticeCfg. This vulnerability allows attackers to execute arbitrary commands via the IpFrom parameter.

9.8CVSS10AI score0.2647EPSS

CVE•added 2021/08/05 9:15 p.m.•53 views

CVE-2021-35324

A vulnerability in the Form_Login function of TOTOLINK A720R A720R_Firmware V4.1.5cu.470_B20200911 allows attackers to bypass authentication.

9.8CVSS9.3AI score0.00756EPSS

CVE•added 2023/02/17 10:15 p.m.•48 views

CVE-2023-23064

TOTOLINK A720R V4.1.5cu.532_ B20210610 is vulnerable to Incorrect Access Control.

9.8CVSS9.3AI score0.00105EPSS

CVE•added 2022/02/04 2:15 a.m.•47 views

CVE-2021-45740

TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a stack overflow in the setWiFiWpsStart function. This vulnerability allows attackers to cause a Denial of Service (DoS) via the pin parameter.

9.8CVSS9.5AI score0.00557EPSS