totolink

1,237 tracked vulnerabilities.

CVE-2024-35403 LOW
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Stack-based Buffer Overflow via desc Parameter in setIpPortFilterRules
May 28, 2024
CVSS 2.7
EPSS 0.00
CVE-2024-35401 MEDIUM
TOTOLINK CP900L v4.1.5cu.798_B20221228 - OS Command Injection via UploadFirmwareFile FileName Parameter
May 28, 2024
CVSS 5.9
EPSS 0.01
CVE-2024-35400 MEDIUM
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Stack Overflow via SetPortForwardRules desc Parameter
May 28, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-35399 HIGH
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Stack-based Buffer Overflow via Password Parameter in loginAuth
May 28, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-35398 CRITICAL
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Stack Overflow via setMacFilterRules desc Parameter
May 28, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-35397 HIGH
TOTOLINK CP900L v4.1.5cu.798_B20221228 - OS Command Injection via NTPSyncWithHost HostTime Parameter
May 28, 2024
CVSS 8.8
EPSS 0.16
CVE-2024-35388 HIGH
TOTOLINK NR1800X v9.1.0u.6681_B20230703 - Stack-based Buffer Overflow via Password Parameter in urldecode Function
May 24, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-35387 CRITICAL
TOTOLINK LR350 V9.3.5u.6369_B20220309 - Stack-based Buffer Overflow via loginAuth http_host Parameter
May 24, 2024
CVSS 9.8
EPSS 0.06
CVE-2024-35396 CRITICAL
TOTOLINK CP900L v4.1.5cu.798_B20221228 - Hardcoded Password for Telnet
May 24, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-35395 HIGH
TOTOLINK CP900L <4.1.5cu.798_B20221228 - Info Disclosure
May 24, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-32355 HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
May 14, 2024
CVSS 8.0
EPSS 0.02
CVE-2024-32354 MEDIUM
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
May 14, 2024
CVSS 6.0
EPSS 0.01
CVE-2024-32353 CRITICAL
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
May 14, 2024
CVSS 9.8
EPSS 0.02
CVE-2024-32352 HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Authenticated RCE
May 14, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-32351 HIGH
TOTOLINK X5000R - Authenticated RCE
May 14, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-32350 HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Authenticated RCE
May 14, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-32349 MEDIUM
TOTOLINK X5000R - Authenticated RCE
May 14, 2024
CVSS 6.0
EPSS 0.01
CVE-2024-35099 CRITICAL
TOTOLINK LR350 V9.3.5u.6698_B20230810 - Stack Overflow via Password Parameter in loginAuth
May 14, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-34921 HIGH
TOTOLINK X5000R v9.1.0cu.2350_B20230313 - OS Command Injection via disconnectVPN Function
May 14, 2024
CVSS 8.8
EPSS 0.09
CVE-2024-34308 HIGH
TOTOLINK LR350 V9.3.5u.6369 - Buffer Overflow
May 14, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-34219 HIGH
TOTOLINK CP450 V4.1.0cu.747_B20191224 - Use of Hard-coded Credentials in SetTelnetCfg
May 14, 2024
CVSS 8.6
EPSS 0.21
CVE-2024-34218 LOW
TOTOLINK outdoor CPE CP450 <4.1.0cu.747_B20191224 - Command Injection
May 14, 2024
CVSS 3.8
EPSS 0.18
CVE-2024-34217 HIGH
TOTOLINK CP450 <4.1.0cu.747 - Buffer Overflow
May 14, 2024
CVSS 7.7
EPSS 0.01
CVE-2024-34215 HIGH
TOTOLINK CP450 <4.1.0cu.747 - Buffer Overflow
May 14, 2024
CVSS 7.3
EPSS 0.01
CVE-2024-34213 CRITICAL
TOTOLINK CP450 <4.1.0cu.747_B20191224 - Buffer Overflow
May 14, 2024
CVSS 9.8
EPSS 0.01