N302r Plus Firmware Security Vulnerabilities and Issues — N302r Plus Firmware CVE List

Lucene search

TotolinkN302r Plus Firmware

3 matches found

CVE•added 2020/12/09 9:15 p.m.•75 views

CVE-2020-25499

TOTOLINK A3002RU-V2.0.0 B20190814.1034 allows authenticated remote users to modify the system's 'Run Command'. An attacker can use this functionality to execute arbitrary OS commands on the router.

9CVSS8.8AI score0.21814EPSS

CVE•added 2025/06/05 6:15 p.m.•59 views

CVE-2025-5671

A vulnerability, which was classified as critical, was found in TOTOLINK N302R Plus up to 3.4.0-B20201028. Affected is an unknown function of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument service_type leads to buffer overflow. It is possibl...

9CVSS9AI score0.00143EPSS

CVE•added 2025/06/05 6:15 p.m.•41 views

CVE-2025-5672

A vulnerability has been found in TOTOLINK N302R Plus up to 3.4.0-B20201028 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument url leads to buffer overflow...

9CVSS8.9AI score0.00143EPSS