totolink
1,237 tracked vulnerabilities.
CVE-2024-35403
LOW
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Stack-based Buffer Overflow via desc Parameter in setIpPortFilterRules
May 28, 2024
CVSS 2.7
EPSS 0.00
CVE-2024-35401
MEDIUM
TOTOLINK CP900L v4.1.5cu.798_B20221228 - OS Command Injection via UploadFirmwareFile FileName Parameter
May 28, 2024
CVSS 5.9
EPSS 0.01
CVE-2024-35400
MEDIUM
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Stack Overflow via SetPortForwardRules desc Parameter
May 28, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-35399
HIGH
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Stack-based Buffer Overflow via Password Parameter in loginAuth
May 28, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-35398
CRITICAL
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Stack Overflow via setMacFilterRules desc Parameter
May 28, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-35397
HIGH
TOTOLINK CP900L v4.1.5cu.798_B20221228 - OS Command Injection via NTPSyncWithHost HostTime Parameter
May 28, 2024
CVSS 8.8
EPSS 0.16
CVE-2024-35388
HIGH
TOTOLINK NR1800X v9.1.0u.6681_B20230703 - Stack-based Buffer Overflow via Password Parameter in urldecode Function
May 24, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-35387
CRITICAL
TOTOLINK LR350 V9.3.5u.6369_B20220309 - Stack-based Buffer Overflow via loginAuth http_host Parameter
May 24, 2024
CVSS 9.8
EPSS 0.06
CVE-2024-35396
CRITICAL
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Hardcoded Password for Telnet
May 24, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-35395
HIGH
TOTOLINK CP900L <4.1.5cu.798_B20221228 - Info Disclosure
May 24, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-32355
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
May 14, 2024
CVSS 8.0
EPSS 0.02
CVE-2024-32354
MEDIUM
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
May 14, 2024
CVSS 6.0
EPSS 0.01
CVE-2024-32353
CRITICAL
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
May 14, 2024
CVSS 9.8
EPSS 0.02
CVE-2024-32352
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Authenticated RCE
May 14, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-32351
HIGH
TOTOLINK X5000R - Authenticated RCE
May 14, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-32350
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Authenticated RCE
May 14, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-32349
MEDIUM
TOTOLINK X5000R - Authenticated RCE
May 14, 2024
CVSS 6.0
EPSS 0.01
CVE-2024-35099
CRITICAL
TOTOLINK LR350 V9.3.5u.6698_B20230810 - Stack Overflow via Password Parameter in loginAuth
May 14, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-34921
HIGH
TOTOLINK X5000R v9.1.0cu.2350_B20230313 - OS Command Injection via disconnectVPN Function
May 14, 2024
CVSS 8.8
EPSS 0.09
CVE-2024-34308
HIGH
TOTOLINK LR350 V9.3.5u.6369 - Buffer Overflow
May 14, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-34219
HIGH
TOTOLINK CP450 V4.1.0cu.747_B20191224 - Use of Hard-coded Credentials in SetTelnetCfg
May 14, 2024
CVSS 8.6
EPSS 0.21
CVE-2024-34218
LOW
TOTOLINK outdoor CPE CP450 <4.1.0cu.747_B20191224 - Command Injection
May 14, 2024
CVSS 3.8
EPSS 0.18
CVE-2024-34217
HIGH
TOTOLINK CP450 <4.1.0cu.747 - Buffer Overflow
May 14, 2024
CVSS 7.7
EPSS 0.01
CVE-2024-34215
HIGH
TOTOLINK CP450 <4.1.0cu.747 - Buffer Overflow
May 14, 2024
CVSS 7.3
EPSS 0.01
CVE-2024-34213
CRITICAL
TOTOLINK CP450 <4.1.0cu.747_B20191224 - Buffer Overflow
May 14, 2024
CVSS 9.8
EPSS 0.01
Products
x5000r_firmware 70
a3300r_firmware 64
a3002r_firmware 61
x6000r_firmware 57
A8000RU 50
a3002ru_firmware 49
a3100r_firmware 47
x2000r_firmware 45
a3700r_firmware 43
A7100RU 40
t6_firmware 39
n600r_firmware 38
a7100ru_firmware 37
ex1200t_firmware 37
lr350_firmware 36
a7000r_firmware 35
a950rg_firmware 33
a702r_firmware 32
a810r_firmware 29
a720r_firmware 28
ex1800t_firmware 28
nr1800x_firmware 27
t8_firmware 26
a3000ru_firmware 25
a3600r_firmware 25
a830r_firmware 25
x15_firmware 25
ca300-poe_firmware 24
a800r_firmware 23
t10_firmware 22
Quick Filters