totolink

1,191 tracked vulnerabilities.

CVE-2026-9388 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setScheduleCfg os command injection
May 24, 2026
CVSS 9.8
CVE-2026-9387 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setUpgradeFW os command injection
May 24, 2026
CVSS 9.8
CVE-2026-9386 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setLanguageCfg os command injection
May 24, 2026
CVSS 9.8
CVE-2026-9385 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setTracerouteCfg os command injection
May 24, 2026
CVSS 9.8
CVE-2026-9384 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setDiagnosisCfg os command injection
May 24, 2026
CVSS 9.8
CVE-2026-8137 HIGH
Totolink X5000R formDdns sub_458E40 buffer overflow
May 08, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7823 CRITICAL
Totolink A8000RU cstecgi.cgi setAppFilterCfg os command injection
May 05, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7750 HIGH
Totolink N300RH POST Request cstecgi.cgi setMacFilterRules buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7749 HIGH
Totolink N300RH POST Request cstecgi.cgi setWanConfig buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7748 HIGH
Totolink N300RH POST Request cstecgi.cgi setUpgradeFW buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7747 CRITICAL
Totolink N300RH Parameter cstecgi.cgi loginauth buffer overflow
May 04, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-7721 MEDIUM
Totolink WA300 cstecgi.cgi NTPSyncWithHost command injection
May 04, 2026
CVSS 6.3
EPSS 0.05
CVE-2026-7720 MEDIUM
Totolink WA300 POST Request cstecgi.cgi setLanguageCfg command injection
May 04, 2026
CVSS 6.3
EPSS 0.05
CVE-2026-7719 CRITICAL
Totolink WA300 POST Request cstecgi.cgi loginauth buffer overflow
May 04, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-7718 MEDIUM
Totolink WA300 POST Request cstecgi.cgi setWebWlanIdx command injection
May 04, 2026
CVSS 6.3
EPSS 0.04
CVE-2026-7717 HIGH
Totolink WA300 POST Request cstecgi.cgi UploadCustomModule buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7633 MEDIUM
Totolink N300RH cstecgi.cgi setUploadSetting file inclusion
May 02, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-7548 HIGH
Totolink NR1800X cstecgi.cgi sub_41A68C command injection
May 01, 2026
CVSS 8.8
EPSS 0.02
CVE-2026-7546 CRITICAL
Totolink NR1800X lighttpd find_host_ip stack-based overflow
May 01, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-7538 CRITICAL
Totolink A8000RU CGI cstecgi.cgi vulnerability os command injection
May 01, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7244 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setWiFiEasyGuestCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7243 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setRadvdCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7242 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setOpenVpnClientCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7241 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setWiFiBasicCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7240 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setVpnAccountCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.01
Products
x5000r_firmware 70 a3002r_firmware 61 x6000r_firmware 57 a3300r_firmware 55 a3002ru_firmware 49 a3100r_firmware 47 x2000r_firmware 45 a3700r_firmware 43 A7100RU 40 t6_firmware 39 n600r_firmware 38 a7100ru_firmware 37 ex1200t_firmware 37 lr350_firmware 36 a7000r_firmware 35 a950rg_firmware 33 a702r_firmware 32 A8000RU 31 a810r_firmware 29 a720r_firmware 28 ex1800t_firmware 28 nr1800x_firmware 27 t8_firmware 26 a3000ru_firmware 25 a3600r_firmware 25 a830r_firmware 25 x15_firmware 25 ca300-poe_firmware 24 a800r_firmware 23 t10_firmware 22
Quick Filters
Critical CVEs With Exploits In CISA KEV