Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
TotolinkCp900l Firmware

3 matches found

CVE
CVEadded 2024/05/24 4:15 p.m.62 views

CVE-2024-35395

TOTOLINK CP900L v4.1.5cu.798_B20221228 was discovered to contain a hardcoded password vulnerability in /etc/shadow.sample, which allows attackers to log in as root.

8.8CVSS7.4AI score0.00107EPSS
CVE
CVEadded 2024/05/28 3:15 p.m.41 views

CVE-2024-35397

TOTOLINK CP900L v4.1.5cu.798_B20221228 weas discovered to contain a command injection vulnerability in the NTPSyncWithHost function via the hostTime parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

8.8CVSS8.9AI score0.00247EPSS
CVE
CVEadded 2024/05/28 3:15 p.m.38 views

CVE-2024-35399

TOTOLINK CP900L v4.1.5cu.798_B20221228 was discovered to contain a stack overflow via the password parameter in the function loginAuth

8.8CVSS8.3AI score0.00071EPSS