totolink
1,237 tracked vulnerabilities.
CVE-2024-31817
HIGH
TOTOLINK EX200 V4.0.3c.7646_B20201211 - Info Disclosure
Apr 08, 2024
CVSS 7.5
EPSS 0.55
CVE-2024-31816
HIGH
TOTOLINK EX200 V4.0.3c.7646_B20201211 - Info Disclosure
Apr 08, 2024
CVSS 7.5
EPSS 0.03
CVE-2024-31815
CRITICAL
TOTOLINK EX200 V4.0.3c.7314_B20191204 - Info Disclosure
Apr 08, 2024
CVSS 9.1
EPSS 0.01
CVE-2024-31814
HIGH
TOTOLINK EX200 V4.0.3c.7646_B20201211 - Auth Bypass
Apr 08, 2024
CVSS 8.8
EPSS 0.09
CVE-2024-31813
HIGH
TOTOLINK EX200 V4.0.3c.7646_B20201211 - Info Disclosure
Apr 08, 2024
CVSS 8.4
EPSS 0.00
CVE-2024-31812
MEDIUM
TOTOLINK EX200 V4.0.3c.7646_B20201211 - Info Disclosure
Apr 08, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-31811
HIGH
TOTOLINK EX200 V4.0.3c.7646_B20201211 - Remote Code Execution via setLanguageCfg langType Parameter
Apr 08, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-31809
HIGH
TOTOLINK EX200 V4.0.3c.7646_B20201211 - RCE
Apr 08, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-31808
HIGH
TOTOLINK EX200 V4.0.3c.7646_B20201211 - RCE
Apr 08, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-31807
CRITICAL
TOTOLINK EX200 V4.0.3c.7646_B20201211 - RCE
Apr 08, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-31806
MEDIUM
TOTOLINK EX200 V4.0.3c.7646_B20201211 - Unauthenticated Denial of Service via RebootSystem Function
Apr 08, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-31805
MEDIUM
TOTOLINK EX200 V4.0.3c.7646_B20201211 - Command Injection
Apr 08, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-27521
HIGH
TOTOLINK A3300R V17.0.0cu.557_B20221024 - RCE
Mar 26, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-29419
MEDIUM
TOTOLINK X2000R <v1.0.0-B20231213.1013 - XSS
Mar 20, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-28640
HIGH
TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115-B20201022 - Buffer Overflow via Command Field
Mar 16, 2024
CVSS 7.5
EPSS 0.14
CVE-2024-28639
CRITICAL
TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115-B20201022 - Buffer Overflow via IP Field
Mar 16, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-28404
HIGH
TOTOLINK X2000R < 1.0.0-b20231213.1013 - Stored Cross-Site Scripting in MAC Filtering
Mar 15, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-28401
MEDIUM
TOTOLINK X2000R < 1.0.0-b20231213.1013 - Stored Cross-Site Scripting in Root Access Control
Mar 15, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-28403
MEDIUM
TOTOLINK X2000R < 1.0.0-b20231213.1013 - Cross-Site Scripting via VPN Page
Mar 15, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-28338
HIGH
TOTOLINK A8000RU V7.1cu.643_B20200521 - Unauthenticated Login Bypass via Session Cookie
Mar 12, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-2353
HIGH
Totolink X6000R 9.4.0cu.852_20230719 - Unauthenticated OS Command Injection via setDiagnosisCfg ip Parameter
Mar 10, 2024
CVSS 8.8
EPSS 0.04
CVE-2024-1783
CRITICAL
Totolink LR1200GB 9.1.0u.6619_B20230130/9.3.5u.6698_B20230810 - Stack-based Buffer Overflow via http_host Parameter
Feb 23, 2024
CVSS 9.8
EPSS 0.02
CVE-2024-1781
MEDIUM
Totolink X6000R AX3000 9.4.0cu.852_20230719 - Command Injection via setWizardCfg Function
Feb 23, 2024
CVSS 6.3
EPSS 0.15
CVE-2024-1661
LOW
Totolink X6000R 9.4.0cu.852_B20230719 - Use of Hard-coded Credentials in /etc/shadow
Feb 20, 2024
CVSS 2.5
EPSS 0.00
CVE-2024-25468
HIGH
TOTOLINK X5000R V.9.1.0u.6369_B20230113 - Denial of Service via NTPSyncWithHost host_time Parameter
Feb 17, 2024
CVSS 7.5
EPSS 0.01
Products
x5000r_firmware 70
a3300r_firmware 64
a3002r_firmware 61
x6000r_firmware 57
A8000RU 50
a3002ru_firmware 49
a3100r_firmware 47
x2000r_firmware 45
a3700r_firmware 43
A7100RU 40
t6_firmware 39
n600r_firmware 38
a7100ru_firmware 37
ex1200t_firmware 37
lr350_firmware 36
a7000r_firmware 35
a950rg_firmware 33
a702r_firmware 32
a810r_firmware 29
a720r_firmware 28
ex1800t_firmware 28
nr1800x_firmware 27
t8_firmware 26
a3000ru_firmware 25
a3600r_firmware 25
a830r_firmware 25
x15_firmware 25
ca300-poe_firmware 24
a800r_firmware 23
t10_firmware 22
Quick Filters