T10 Firmware@v4.1.8cu.5207 b20210320 Security Vulnerabilities and Issues — T10 Firmware@v4.1.8cu.5207 b20210320 CVE List

Lucene search

TotolinkT10 Firmwarev4.1.8cu.5207 b20210320

5 matches found

CVE•added 2022/02/19 12:15 a.m.•89 views

CVE-2022-25130

A command injection vulnerability in the function updateWifiInfo of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.

9.8CVSS9.7AI score0.04613EPSS

CVE•added 2022/02/19 12:15 a.m.•71 views

CVE-2022-25131

A command injection vulnerability in the function recvSlaveCloudCheckStatus of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.

9.8CVSS9.7AI score0.04613EPSS

CVE•added 2022/02/19 12:15 a.m.•69 views

CVE-2022-25132

A command injection vulnerability in the function meshSlaveDlfw of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.

9.8CVSS9.7AI score0.04613EPSS

CVE•added 2022/02/19 12:15 a.m.•66 views

CVE-2022-25137

A command injection vulnerability in the function recvSlaveUpgstatus of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.

9.8CVSS9.7AI score0.04613EPSS

CVE•added 2022/02/19 12:15 a.m.•65 views

CVE-2022-25136

A command injection vulnerability in the function meshSlaveUpdate of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.

9.8CVSS9.7AI score0.04613EPSS