totolink

1,236 tracked vulnerabilities.

CVE-2026-9454 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCertGenerationCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9436 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setL2tpServerCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9435 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setQosCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9434 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setWiFiWpsCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9433 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setMacFilterRules os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9432 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9408 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setStaticDhcpRules os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9407 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setFirewallType os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9406 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setRemoteCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9405 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setGameSpeedCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9404 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setDdnsCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9388 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setScheduleCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9387 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setUpgradeFW os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9386 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setLanguageCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9385 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setTracerouteCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9384 CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setDiagnosisCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-8137 HIGH
Totolink X5000R formDdns sub_458E40 buffer overflow
May 08, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7823 CRITICAL
Totolink A8000RU cstecgi.cgi setAppFilterCfg os command injection
May 05, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7750 HIGH
Totolink N300RH POST Request cstecgi.cgi setMacFilterRules buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7749 HIGH
Totolink N300RH POST Request cstecgi.cgi setWanConfig buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.01
CVE-2026-7748 HIGH
Totolink N300RH POST Request cstecgi.cgi setUpgradeFW buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7747 CRITICAL
Totolink N300RH Parameter cstecgi.cgi loginauth buffer overflow
May 04, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7721 MEDIUM
Totolink WA300 cstecgi.cgi NTPSyncWithHost command injection
May 04, 2026
CVSS 6.3
EPSS 0.01
CVE-2026-7720 MEDIUM
Totolink WA300 POST Request cstecgi.cgi setLanguageCfg command injection
May 04, 2026
CVSS 6.3
EPSS 0.01
CVE-2026-7719 CRITICAL
Totolink WA300 POST Request cstecgi.cgi loginauth buffer overflow
May 04, 2026
CVSS 9.8
EPSS 0.01