Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
TotolinkA810r Firmware

29 matches found

CVE
CVEā€¢added 2022/03/15 10:15 p.m.ā€¢283 views

CVE-2022-26210

Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function setUpgradeFW, via the File...

9.8CVSS9.9AI score0.09127EPSS
CVE
CVEā€¢added 2022/02/24 3:15 p.m.ā€¢194 views

CVE-2022-25079

TOTOLink A810R V4.1.2cu.5182_B20201026 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERY_STRING parameter.

9.8CVSS9.9AI score0.06789EPSS
CVE
CVEā€¢added 2022/03/15 10:15 p.m.ā€¢120 views

CVE-2022-26207

Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function setDiagnosisCfg, via the i...

9.8CVSS9.9AI score0.17828EPSS
CVE
CVEā€¢added 2022/03/15 10:15 p.m.ā€¢96 views

CVE-2022-26209

Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function setUploadSetting, via the ...

9.8CVSS9.9AI score0.17828EPSS
CVE
CVEā€¢added 2022/03/15 10:15 p.m.ā€¢95 views

CVE-2022-26212

Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function setDeviceName, via the dev...

9.8CVSS9.9AI score0.17828EPSS
CVE
CVEā€¢added 2022/03/15 10:15 p.m.ā€¢85 views

CVE-2022-26211

Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function CloudACMunualUpdate, via t...

9.8CVSS9.9AI score0.17828EPSS
CVE
CVEā€¢added 2022/03/15 10:15 p.m.ā€¢82 views

CVE-2022-26208

Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function setWebWlanIdx, via the web...

9.8CVSS9.9AI score0.17828EPSS
CVE
CVEā€¢added 2022/03/15 10:15 p.m.ā€¢79 views

CVE-2022-26206

Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function setLanguageCfg, via the la...

9.8CVSS9.9AI score0.17828EPSS
CVE
CVEā€¢added 2022/03/15 10:15 p.m.ā€¢74 views

CVE-2022-26214

Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function NTPSyncWithHost. This vuln...

9.8CVSS10AI score0.27117EPSS
CVE
CVEā€¢added 2025/05/10 5:15 a.m.ā€¢59 views

CVE-2025-4496

A vulnerability was found in TOTOLINK T10, A3100R, A950RG, A800R, N600R, A3000RU and A810R 4.1.8cu.5241_B20210927. It has been declared as critical. This vulnerability affects the function CloudACMunualUpdate of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument FileName leads to buffe...

9.8CVSS7.1AI score0.00195EPSS
CVE
CVEā€¢added 2025/04/22 2:15 p.m.ā€¢55 views

CVE-2025-28034

TOTOLINK A800R V4.1.2cu.5137_B20200730, A810R V4.1.2cu.5182_B20201026, A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a pre-auth remote command execution vulnerability in the NTPSyncWithHost funct...

9.8CVSS7.6AI score0.03659EPSS
CVE
CVEā€¢added 2022/07/06 1:15 p.m.ā€¢52 views

CVE-2022-28935

Totolink A830R V5.9c.4729_B20191112, Totolink A3100R V4.1.2cu.5050_B20200504, Totolink A950RG V4.1.2cu.5161_B20200903, Totolink A800R V4.1.2cu.5137_B20200730, Totolink A3000RU V5.9c.5185_B20201128, Totolink A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability.

7.2CVSS8AI score0.09965EPSS
CVE
CVEā€¢added 2022/08/29 12:15 a.m.ā€¢52 views

CVE-2022-36616

TOTOLINK A810R V4.1.2cu.5182_B20201026 and V5.9c.4050_B20190424 was discovered to contain a hardcoded password for root at /etc/shadow.sample.

7.8CVSS7.7AI score0.00041EPSS
CVE
CVEā€¢added 2025/04/22 4:15 p.m.ā€¢51 views

CVE-2025-28037

TOTOLINK A810R V4.1.2cu.5182_B20201026 and A950RG V4.1.2cu.5161_B20200903 were found to contain a pre-auth remote command execution vulnerability in the setDiagnosisCfg function through the ipDomain parameter.

9.8CVSS7.6AI score0.04334EPSS
CVE
CVEā€¢added 2025/04/22 4:15 p.m.ā€¢50 views

CVE-2025-28031

TOTOLINK A810R V4.1.2cu.5182_B20201026 was discovered to contain a hardcoded password for the telnet service in product.ini.

6.5CVSS7.7AI score0.00275EPSS
CVE
CVEā€¢added 2025/04/22 4:15 p.m.ā€¢49 views

CVE-2025-28024

TOTOLINK A810R V4.1.2cu.5182_B20201026 was found to contain a buffer overflow vulnerability in the cstecgi.cgi

9.8CVSS7.7AI score0.003EPSS
CVE
CVEā€¢added 2025/04/22 4:15 p.m.ā€¢48 views

CVE-2025-28030

TOTOLINK A810R V4.1.2cu.5182_B20201026 was discovered to contain a stack overflow via the startTime and endTime parameters in setParentalRules function.

8.8CVSS8.1AI score0.0025EPSS
CVE
CVEā€¢added 2025/04/22 2:15 p.m.ā€¢48 views

CVE-2025-28032

TOTOLINK A800R V4.1.2cu.5137_B20200730, A810R V4.1.2cu.5182_B20201026, A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 contain a pre-auth buffer overflow vulnerability in the setNoticeCfg function through the IpForm par...

7.3CVSS7.5AI score0.00261EPSS
CVE
CVEā€¢added 2025/04/22 2:15 p.m.ā€¢48 views

CVE-2025-28033

TOTOLINK A800R V4.1.2cu.5137_B20200730, A810R V4.1.2cu.5182_B20201026, A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a pre-auth buffer overflow vulnerability in the setNoticeCfg function through ...

7.3CVSS7.6AI score0.00145EPSS
CVE
CVEā€¢added 2025/04/15 2:15 p.m.ā€¢48 views

CVE-2025-28137

The TOTOLINK A810R V4.1.2cu.5182_B20201026 were found to contain a pre-auth remote command execution vulnerability in the setNoticeCfg function through the NoticeUrl parameter.

9.8CVSS7.6AI score0.05869EPSS
CVE
CVEā€¢added 2025/01/21 4:15 p.m.ā€¢45 views

CVE-2024-57036

TOTOLINK A810R V4.1.2cu.5032_B20200407 was found to contain a command insertion vulnerability in downloadFile.cgi main function. This vulnerability allows an attacker to execute arbitrary commands by sending HTTP request.

8.1CVSS7.7AI score0.00073EPSS
CVE
CVEā€¢added 2025/03/27 4:15 p.m.ā€¢43 views

CVE-2025-28135

TOTOLINK A810R V4.1.2cu.5182_B20201026 was found to contain a buffer overflow vulnerability in downloadFile.cgi.

7.5CVSS7.2AI score0.00203EPSS
CVE
CVEā€¢added 2022/08/29 12:15 a.m.ā€¢42 views

CVE-2022-38511

TOTOLINK A810R V5.9c.4050_B20190424 was discovered to contain a command injection vulnerability via the component downloadFile.cgi.

7.8CVSS7.8AI score0.00242EPSS
CVE
CVEā€¢added 2025/04/23 5:16 p.m.ā€¢42 views

CVE-2025-28021

TOTOLINK A810R V4.1.2cu.5182_B20201026 was found to contain a buffer overflow vulnerability in the downloadFile.cgi through the v14 and v3 parameters

7.3CVSS7.6AI score0.00145EPSS
CVE
CVEā€¢added 2025/04/23 5:16 p.m.ā€¢42 views

CVE-2025-28022

TOTOLINK A810R V4.1.2cu.5182_B20201026 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v25 parameter.

7.3CVSS7.5AI score0.00145EPSS
CVE
CVEā€¢added 2025/04/22 6:15 p.m.ā€¢42 views

CVE-2025-28036

TOTOLINK A950RG V4.1.2cu.5161_B20200903 was found to contain a pre-auth remote command execution vulnerability in the setNoticeCfg function through the NoticeUrl parameter.

9.8CVSS7.6AI score0.03659EPSS
CVE
CVEā€¢added 2024/11/21 6:15 p.m.ā€¢40 views

CVE-2024-53335

TOTOLINK A810R V4.1.2cu.5182_B20201026 is vulnerable to Buffer Overflow in downloadFlile.cgi.

7.8CVSS7.1AI score0.00037EPSS
CVE
CVEā€¢added 2025/04/22 6:15 p.m.ā€¢39 views

CVE-2025-28035

TOTOLINK A830R V4.1.2cu.5182_B20201102 was found to contain a pre-auth remote command execution vulnerability in the setNoticeCfg function through the NoticeUrl parameter.

9.8CVSS7.6AI score0.03659EPSS
CVE
CVEā€¢added 2024/11/21 6:15 p.m.ā€¢37 views

CVE-2024-53334

TOTOLINK A810R V4.1.2cu.5182_B20201026 is vulnerable to Buffer Overflow in infostat.cgi.

8.8CVSS7.1AI score0.00059EPSS