T6 Firmware Security Vulnerabilities and Issues — T6 Firmware CVE List

Lucene search

TotolinkT6 Firmware

7 matches found

CVE•added 2025/07/13 9:15 a.m.•7 views

CVE-2025-7524

A vulnerability was found in TOTOLINK T6 4.1.5cu.748_B20211015. It has been classified as critical. This affects the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to command injection. It is possible t...

8.8CVSS6.9AI score0.02454EPSS

CVE•added 2025/07/13 10:15 a.m.•7 views

CVE-2025-7525

A vulnerability was found in TOTOLINK T6 4.1.5cu.748_B20211015. It has been declared as critical. This vulnerability affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument command leads to command injection...

8.8CVSS6.9AI score0.02454EPSS

CVE•added 2025/06/30 5:15 p.m.•6 views

CVE-2025-6916

A vulnerability, which was classified as critical, was found in TOTOLINK T6 4.1.5cu.748_B20211015. This affects the function Form_Login of the file /formLoginAuth.htm. The manipulation of the argument authCode/goURL leads to missing authentication. The attack needs to be initiated within the local ...

8.8CVSS8.6AI score0.00122EPSS

CVE•added 2025/07/14 4:15 p.m.•6 views

CVE-2025-7615

A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748. Affected by this vulnerability is the function clearPairCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to command injection. The attack can be lau...

8.8CVSS7.1AI score0.02499EPSS

CVE•added 2025/07/14 3:15 p.m.•5 views

CVE-2025-7613

A vulnerability was found in TOTOLINK T6 4.1.5cu.748. It has been rated as critical. This issue affects the function CloudSrvVersionCheck of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to command injection. The attack may be in...

8.8CVSS7.8AI score0.02499EPSS

CVE•added 2025/07/14 3:15 p.m.•5 views

CVE-2025-7614

A vulnerability classified as critical has been found in TOTOLINK T6 4.1.5cu.748. Affected is the function delDevice of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ipAddr leads to command injection. It is possible to launch the attack r...

8.8CVSS7.9AI score0.02499EPSS

CVE•added 2 days ago•2 views

CVE-2025-7952

A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748. This vulnerability affects the function ckeckKeepAlive of the file wireless.so of the component MQTT Packet Handler. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been d...

8.8CVSS6.9AI score0.03174EPSS