X5000r Firmware Security Vulnerabilities and Issues — X5000r Firmware CVE List

Lucene search

TotolinkX5000r Firmware

17 matches found

CVE•added 2025/02/21 7:15 p.m.•79 views

CVE-2025-25604

Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable function in mtkwifi.lua.

6.5CVSS6.8AI score0.09357EPSS

CVE•added 2025/01/15 5:15 p.m.•72 views

CVE-2024-57011

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "minute" parameters in setScheduleCfg.

8.8CVSS7.7AI score0.01137EPSS

CVE•added 2025/01/15 5:15 p.m.•70 views

CVE-2024-57012

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "week" parameter in setScheduleCfg.

8.8CVSS7.7AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•69 views

CVE-2024-57013

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "switch" parameter in setScheduleCfg.

8.8CVSS7.7AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•69 views

CVE-2024-57015

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "hour" parameter in setScheduleCfg.

8.8CVSS7.7AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•67 views

CVE-2024-57022

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "sHour" parameter in setWiFiScheduleCfg.

8.8CVSS7.7AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•66 views

CVE-2024-57017

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "pass" parameter in setVpnAccountCfg.

8.8CVSS8AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•65 views

CVE-2024-57014

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "recHour" parameter in setScheduleCfg.

8.8CVSS7.7AI score0.02466EPSS

CVE•added 2025/01/15 5:15 p.m.•65 views

CVE-2024-57016

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "user" parameter in setVpnAccountCfg.

8.8CVSS8AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•64 views

CVE-2024-57018

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "desc" parameter in setVpnAccountCfg.

8.8CVSS8AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•64 views

CVE-2024-57019

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "limit" parameter in setVpnAccountCfg.

8.8CVSS8AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•64 views

CVE-2024-57021

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "eHour" parameter in setWiFiScheduleCfg.

8.8CVSS7.7AI score0.03569EPSS

CVE•added 2025/01/15 5:15 p.m.•61 views

CVE-2024-57020

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "sMinute" parameter in setWiFiScheduleCfg.

8.8CVSS7.7AI score0.03569EPSS

CVE•added 2025/02/21 7:15 p.m.•52 views

CVE-2025-25605

Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the apcli_wps_gen_pincode function in mtkwifi.lua.

6.5CVSS6.8AI score0.09357EPSS

CVE•added 2025/01/15 5:15 p.m.•38 views

CVE-2024-57023

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "week" parameter in setWiFiScheduleCfg.

6.8CVSS7.7AI score0.02093EPSS

CVE•added 2025/01/15 5:15 p.m.•36 views

CVE-2024-57025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "desc" parameter in setWiFiScheduleCfg.

6.8CVSS7.7AI score0.02093EPSS

CVE•added 2025/01/15 5:15 p.m.•35 views

CVE-2024-57024

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "eMinute" parameter in setWiFiScheduleCfg.

6.8CVSS7.7AI score0.02093EPSS