totolink

1,219 tracked vulnerabilities.

CVE-2024-0298 HIGH
Totolink N200RE 9.3.5u.6139_B20201216 - OS Command Injection via setDiagnosisCfg ip Parameter
Jan 08, 2024
CVSS 7.3
EPSS 0.02
CVE-2024-0297 HIGH
Totolink N200RE 9.3.5u.6139_B20201216 - OS Command Injection via UploadFirmwareFile FileName Parameter
Jan 08, 2024
CVSS 7.3
EPSS 0.01
CVE-2024-0296 HIGH
Totolink N200RE 9.3.5u.6139_B20201216 - OS Command Injection via NTPSyncWithHost host_time Parameter
Jan 08, 2024
CVSS 7.3
EPSS 0.02
CVE-2024-0295 HIGH
Totolink LR1200GB 9.1.0u.6619_B20230130 - OS Command Injection via hostName Parameter
Jan 08, 2024
CVSS 7.3
EPSS 0.02
CVE-2024-0294 HIGH
Totolink LR1200GB 9.1.0u.6619_B20230130 - OS Command Injection via setUssd Function
Jan 08, 2024
CVSS 7.3
EPSS 0.02
CVE-2024-0293 MEDIUM
Totolink LR1200GB 9.1.0u.6619_B20230130 - OS Command Injection via setUploadSetting FileName Parameter
Jan 08, 2024
CVSS 6.3
EPSS 0.03
CVE-2024-0292 MEDIUM
Totolink LR1200GB 9.1.0u.6619_B20230130 - OS Command Injection via hostName Parameter
Jan 08, 2024
CVSS 6.3
EPSS 0.02
CVE-2024-0291 MEDIUM
Totolink LR1200GB 9.1.0u.6619_B20230130 - OS Command Injection via UploadFirmwareFile FileName Parameter
Jan 08, 2024
CVSS 6.3
EPSS 0.01
CVE-2023-52040 CRITICAL
TOTOLINK X6000R <9.4.0cu.852_B20230719 - Command Injection
Jan 24, 2024
CVSS 9.8
EPSS 0.00
CVE-2023-52039 CRITICAL
TOTOLINK X6000R <9.4.0cu.852_B20230719 - Command Injection
Jan 24, 2024
CVSS 9.8
EPSS 0.00
CVE-2023-52038 CRITICAL
TOTOLINK X6000R <9.4.0cu.852_B20230719 - Command Injection
Jan 24, 2024
CVSS 9.8
EPSS 0.00
CVE-2023-52042 CRITICAL
TOTOLINK X6000R V9.4.0cu.852_B20230719 - Command Injection
Jan 16, 2024
CVSS 9.8
EPSS 0.00
CVE-2023-52041 CRITICAL
TOTOLINK X6000R V9.4.0cu.852_B20230719 - RCE
Jan 16, 2024
CVSS 9.8
EPSS 0.00
CVE-2023-52026 CRITICAL
TOTOlink EX1800T V9.1.0cu.2112_B20220316 - RCE
Jan 12, 2024
CVSS 9.8
EPSS 0.04
CVE-2023-52032 CRITICAL
TOTOlink EX1200T <V4.1.2cu.5232 - RCE
Jan 11, 2024
CVSS 9.8
EPSS 0.16
CVE-2023-52031 CRITICAL
TOTOlink A3700R v9.1.2u.5822_B20200513 - Remote Code Execution via UploadFirmwareFile Function
Jan 11, 2024
CVSS 9.8
EPSS 0.15
CVE-2023-52030 CRITICAL
TOTOlink A3700R v9.1.2u.5822_B20200513 - Remote Code Execution via setOpModeCfg Function
Jan 11, 2024
CVSS 9.8
EPSS 0.15
CVE-2023-52029 CRITICAL
TOTOlink A3700R v9.1.2u.5822_B20200513 - Remote Code Execution via setDiagnosisCfg Function
Jan 11, 2024
CVSS 9.8
EPSS 0.15
CVE-2023-52028 CRITICAL
TOTOlink A3700R v9.1.2u.5822_B20200513 - Remote Code Execution via setTracerouteCfg Function
Jan 11, 2024
CVSS 9.8
EPSS 0.21
CVE-2023-52027 CRITICAL
TOTOlink A3700R <9.1.2u.5822_B20200513 - RCE
Jan 11, 2024
CVSS 9.8
EPSS 0.15
CVE-2023-7223 MEDIUM
Totolink T6 4.1.9cu.5241_B20210923 - Improper Access Control via cstecgi.cgi topicurl Parameter
Jan 09, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-7222 HIGH
Totolink X2000R 1.0.0-B20221212.1452 - Buffer Overflow via formTmultiAP HTTP POST Request Handler
Jan 09, 2024
CVSS 7.2
EPSS 0.00
CVE-2023-7221 CRITICAL
Totolink T6 4.1.9cu.5241_B20210923 - Buffer Overflow via HTTP POST Request Handler
Jan 09, 2024
CVSS 9.8
EPSS 0.00
CVE-2023-7220 CRITICAL
Totolink NR1800X 9.1.0u.6279_B20210910 - Stack-based Buffer Overflow in loginAuth
Jan 09, 2024
CVSS 9.8
EPSS 0.00
CVE-2023-7219 HIGH
Totolink N350RT 9.3.5u.6139_B202012 - Stack-based Buffer Overflow via http_host Parameter in loginAuth
Jan 09, 2024
CVSS 7.2
EPSS 0.00
Products
x5000r_firmware 70 a3002r_firmware 61 x6000r_firmware 57 a3300r_firmware 55 A8000RU 50 a3002ru_firmware 49 a3100r_firmware 47 x2000r_firmware 45 a3700r_firmware 43 A7100RU 40 t6_firmware 39 n600r_firmware 38 a7100ru_firmware 37 ex1200t_firmware 37 lr350_firmware 36 a7000r_firmware 35 a950rg_firmware 33 a702r_firmware 32 a810r_firmware 29 a720r_firmware 28 ex1800t_firmware 28 nr1800x_firmware 27 t8_firmware 26 a3000ru_firmware 25 a3600r_firmware 25 a830r_firmware 25 x15_firmware 25 ca300-poe_firmware 24 a800r_firmware 23 t10_firmware 22
Quick Filters
Critical CVEs With Exploits In CISA KEV