totolink

1,220 tracked vulnerabilities.

CVE-2023-37173 CRITICAL
TOTOLINK A3300R V17.0.0cu.557_B20221024 - OS Command Injection via setTracerouteCfg Command Parameter
Jul 07, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-37172 CRITICAL
TOTOLINK A3300R V17.0.0cu.557_B20221024 - OS Command Injection via setDiagnosisCfg ip Parameter
Jul 07, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-37171 CRITICAL
TOTOLINK A3300R V17.0.0cu.557_B20221024 - OS Command Injection via admuser Parameter
Jul 07, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-37170 CRITICAL
TOTOLINK A3300R V17.0.0cu.557_B20221024 - Unauthenticated Remote Code Execution via Lang Parameter in setLanguageCfg
Jul 07, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-37149 CRITICAL
TOTOLINK LR350 V9.3.5u.6369_B20220309 - OS Command Injection via FileName Parameter
Jul 07, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-37148 CRITICAL
TOTOLINK LR350 V9.3.5u.6369_B20220309 - OS Command Injection via setUssd ussd Parameter
Jul 07, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-37146 CRITICAL
TOTOLINK LR350 V9.3.5u.6369_B20220309 - OS Command Injection via UploadFirmwareFile FileName Parameter
Jul 07, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-37145 CRITICAL
TOTOLINK LR350 V9.3.5u.6369_B20220309 - OS Command Injection via Hostname Parameter
Jul 07, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-33556 CRITICAL
TOTOLink A7100RU V7.4cu.2313_B20191024 - Command Injection
Jun 07, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-31569 CRITICAL
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
Jun 06, 2023
CVSS 9.8
EPSS 0.05
CVE-2023-33487 CRITICAL
TOTOLINK X5000R - Command Injection
May 31, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-33486 CRITICAL
TOTOLINK X5000R - Command Injection
May 31, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-33485 HIGH
TOTOLINK X5000R V9.1.0u.6118_B20201102 & V9.1.0u.6369_B20230113 Authenticated Buffer Overflow in addEffect
May 31, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-2790 LOW
TOTOLINK N200RE 9.3.5u.6255_B20211224 - Info Disclosure
May 18, 2023
CVSS 2.3
EPSS 0.00
CVE-2023-31729 CRITICAL
TOTOLINK A3300R <17.0.0cu.557 - Command Injection
May 18, 2023
CVSS 9.8
EPSS 0.03
CVE-2023-31856 CRITICAL
TOTOLINK CP300+ V5.2cu.7594_B20200910 - Command Injection
May 16, 2023
CVSS 9.8
EPSS 0.23
CVE-2023-30054 CRITICAL
TOTOLINK A7100RU V7.4cu.2313_B20191024 - OS Command Injection
May 05, 2023
CVSS 9.8
EPSS 0.03
CVE-2023-30053 CRITICAL
TOTOLINK A7100RU V7.4cu.2313_B20191024 - OS Command Injection
May 05, 2023
CVSS 9.8
EPSS 0.03
CVE-2023-30013 CRITICAL NUCLEI
TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 - OS Command Injection via Traceroute Configuration
May 05, 2023
CVSS 9.8
EPSS 0.92
CVE-2023-29803 CRITICAL
TOTOLINK X18 V9.1.0cu.2024_B20220329 - OS Command Injection via disconnectVPN pid Parameter
Apr 14, 2023
CVSS 9.8
EPSS 0.15
CVE-2023-29802 CRITICAL
TOTOLINK X18 V9.1.0cu.2024_B20220329 - OS Command Injection via setDiagnosisCfg ip Parameter
Apr 14, 2023
CVSS 9.8
EPSS 0.15
CVE-2023-29801 CRITICAL
TOTOLINK X18 V9.1.0cu.2024_B20220329 - OS Command Injection via rtLogEnabled and rtLogServer Parameters
Apr 14, 2023
CVSS 9.8
EPSS 0.15
CVE-2023-29800 CRITICAL
TOTOLINK X18 V9.1.0cu.2024_B20220329 - OS Command Injection via UploadFirmwareFile FileName Parameter
Apr 14, 2023
CVSS 9.8
EPSS 0.15
CVE-2023-29799 CRITICAL
TOTOLINK X18 V9.1.0cu.2024_B20220329 - OS Command Injection via Hostname Parameter
Apr 14, 2023
CVSS 9.8
EPSS 0.15
CVE-2023-29798 CRITICAL
TOTOLINK X18 V9.1.0cu.2024_B20220329 - OS Command Injection via setTracerouteCfg Command Parameter
Apr 14, 2023
CVSS 9.8
EPSS 0.15
Products
x5000r_firmware 70 a3002r_firmware 61 x6000r_firmware 57 a3300r_firmware 55 A8000RU 50 a3002ru_firmware 49 a3100r_firmware 47 x2000r_firmware 45 a3700r_firmware 43 A7100RU 40 t6_firmware 39 n600r_firmware 38 a7100ru_firmware 37 ex1200t_firmware 37 lr350_firmware 36 a7000r_firmware 35 a950rg_firmware 33 a702r_firmware 32 a810r_firmware 29 a720r_firmware 28 ex1800t_firmware 28 nr1800x_firmware 27 t8_firmware 26 a3000ru_firmware 25 a3600r_firmware 25 a830r_firmware 25 x15_firmware 25 ca300-poe_firmware 24 a800r_firmware 23 t10_firmware 22
Quick Filters
Critical CVEs With Exploits In CISA KEV