totolink

1,236 tracked vulnerabilities.

CVE-2026-7718 MEDIUM
Totolink WA300 POST Request cstecgi.cgi setWebWlanIdx command injection
May 04, 2026
CVSS 6.3
EPSS 0.01
CVE-2026-7717 HIGH
Totolink WA300 POST Request cstecgi.cgi UploadCustomModule buffer overflow
May 04, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-7633 MEDIUM
Totolink N300RH cstecgi.cgi setUploadSetting file inclusion
May 02, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-7548 HIGH
Totolink NR1800X cstecgi.cgi sub_41A68C command injection
May 01, 2026
CVSS 8.8
EPSS 0.01
CVE-2026-7546 CRITICAL
Totolink NR1800X lighttpd find_host_ip stack-based overflow
May 01, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-7538 CRITICAL
Totolink A8000RU CGI cstecgi.cgi vulnerability os command injection
May 01, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7244 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setWiFiEasyGuestCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7243 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setRadvdCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7242 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setOpenVpnClientCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7241 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setWiFiBasicCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7240 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setVpnAccountCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7219 HIGH
Totolink N300RT formIpQoS buffer overflow
Apr 28, 2026
CVSS 7.2
EPSS 0.01
CVE-2026-7218 HIGH
Totolink N300RT libapmib.so formWsc is_cmd_string_valid buffer overflow
Apr 28, 2026
CVSS 7.2
EPSS 0.00
CVE-2026-7204 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setPptpServerCfg os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7203 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setUrlFilterRules os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7202 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setWiFiWpsStart os command injection
Apr 28, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7156 CRITICAL
Totolink A8000RU CGI cstecgi.cgi CsteSystem os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7155 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setLoginPasswordCfg os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7154 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setAdvancedInfoShow os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7153 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setMiniuiHomeInfoShow os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7152 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setTelnetCfg os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7140 CRITICAL
Totolink A8000RU CGI cstecgi.cgi CsteSystem os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7139 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setWiFiAclRules os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7138 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setNtpCfg os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-7137 CRITICAL
Totolink A8000RU CGI cstecgi.cgi setStorageCfg os command injection
Apr 27, 2026
CVSS 9.8
EPSS 0.02