totolink
1,236 tracked vulnerabilities.
CVE-2026-9454
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCertGenerationCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9436
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setL2tpServerCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9435
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setQosCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9434
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setWiFiWpsCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9433
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setMacFilterRules os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9432
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9408
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setStaticDhcpRules os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9407
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setFirewallType os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9406
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setRemoteCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9405
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setGameSpeedCfg os command injection
May 25, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9404
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setDdnsCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9388
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setScheduleCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9387
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setUpgradeFW os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9386
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setLanguageCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9385
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setTracerouteCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-9384
CRITICAL
Totolink A8000RU Web Management cstecgi.cgi setDiagnosisCfg os command injection
May 24, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-8137
HIGH
Totolink X5000R formDdns sub_458E40 buffer overflow
May 08, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7823
CRITICAL
Totolink A8000RU cstecgi.cgi setAppFilterCfg os command injection
May 05, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7750
HIGH
Totolink N300RH POST Request cstecgi.cgi setMacFilterRules buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7749
HIGH
Totolink N300RH POST Request cstecgi.cgi setWanConfig buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.01
CVE-2026-7748
HIGH
Totolink N300RH POST Request cstecgi.cgi setUpgradeFW buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7747
CRITICAL
Totolink N300RH Parameter cstecgi.cgi loginauth buffer overflow
May 04, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7721
MEDIUM
Totolink WA300 cstecgi.cgi NTPSyncWithHost command injection
May 04, 2026
CVSS 6.3
EPSS 0.01
CVE-2026-7720
MEDIUM
Totolink WA300 POST Request cstecgi.cgi setLanguageCfg command injection
May 04, 2026
CVSS 6.3
EPSS 0.01
CVE-2026-7719
CRITICAL
Totolink WA300 POST Request cstecgi.cgi loginauth buffer overflow
May 04, 2026
CVSS 9.8
EPSS 0.01
Products
x5000r_firmware 70
a3300r_firmware 64
a3002r_firmware 61
x6000r_firmware 57
A8000RU 50
a3002ru_firmware 49
a3100r_firmware 47
x2000r_firmware 45
a3700r_firmware 43
A7100RU 40
t6_firmware 39
n600r_firmware 38
a7100ru_firmware 37
ex1200t_firmware 37
lr350_firmware 36
a7000r_firmware 35
a950rg_firmware 33
a702r_firmware 32
a810r_firmware 29
a720r_firmware 28
ex1800t_firmware 28
nr1800x_firmware 27
t8_firmware 26
a3000ru_firmware 25
a3600r_firmware 25
a830r_firmware 25
x15_firmware 25
ca300-poe_firmware 24
a800r_firmware 23
t10_firmware 22
Quick Filters