Ex200 Firmware Security Vulnerabilities and Issues — Ex200 Firmware CVE List

Lucene search

TotolinkEx200 Firmware

5 matches found

CVE•added 2024/04/08 1:15 p.m.•45 views

CVE-2024-31812

In TOTOLINK EX200 V4.0.3c.7646_B20201211, an attacker can obtain sensitive information without authorization through the function getWiFiExtenderConfig.

6.5CVSS6.4AI score0.00056EPSS

CVE•added 2024/04/18 5:15 p.m.•41 views

CVE-2024-32326

TOTOLINK EX200 V4.0.3c.7646_B20201211 contains a Cross-site scripting (XSS) vulnerability through the key parameter in the setWiFiExtenderConfig function.

6.8CVSS6AI score0.00123EPSS

CVE•added 2024/04/08 1:15 p.m.•40 views

CVE-2024-31806

TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a Denial-of-Service (DoS) vulnerability in the RebootSystem function which can reboot the system without authorization.

6.5CVSS7.2AI score0.00042EPSS

CVE•added 2024/04/08 1:15 p.m.•39 views

CVE-2024-31805

TOTOLINK EX200 V4.0.3c.7646_B20201211 allows attackers to start the Telnet service without authorization via the telnet_enabled parameter in the setTelnetCfg function.

6.5CVSS6.8AI score0.00036EPSS

CVE•added 2024/11/21 6:15 p.m.•35 views

CVE-2024-53333

TOTOLINK EX200 v4.0.3c.7646_B20201211 was found to contain a command insertion vulnerability in the setUssd function. This vulnerability allows an attacker to execute arbitrary commands via the "ussd" parameter.

6.3CVSS8.1AI score0.00032EPSS