totolink

1,237 tracked vulnerabilities.

CVE-2022-25083 CRITICAL
TOTOLink A860R V4.1.2cu.5182_B20201027 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25082 CRITICAL NUCLEI
TOTOLink A950RG V5.9c.4050_B20190424 and V4.1.2cu.5204_B20210112 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.16
CVE-2022-25081 CRITICAL
TOTOLink T10 V5.9c.5061_B20200511 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25080 CRITICAL
TOTOLink A830R V5.9c.4729_B20191112 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25079 CRITICAL
TOTOLink A810R V4.1.2cu.5182_B20201026 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25078 CRITICAL
TOTOLink A3600R V4.1.2cu.5182_B20201102 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25077 CRITICAL
TOTOLink A3100R V4.1.2cu.5050_B20200504 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.33
CVE-2022-25076 CRITICAL
TOTOLink A800R V4.1.2cu.5137_B20200730 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25075 CRITICAL
TOTOLink A3000RU V5.9c.2280_B20180512 - OS Command Injection via QUERY_STRING Parameter
Feb 24, 2022
CVSS 9.8
EPSS 0.56
CVE-2022-25137 CRITICAL
TOTOLINK T6 and T10 Firmware - OS Command Injection via MQTT Packet
Feb 19, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-25136 CRITICAL
TOTOLINK T6 and T10 Firmware - OS Command Injection via MQTT Packet
Feb 19, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-25135 CRITICAL
TOTOLINK T6 V3 Firmware V4.1.5cu.748_B20211015 - OS Command Injection via MQTT Packet
Feb 19, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25134 CRITICAL
TOTOLINK T6 V3 Firmware V4.1.5cu.748_B20211015 - OS Command Injection via MQTT Packet
Feb 19, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25133 CRITICAL
TOTOLINK T6 V3 Firmware V4.1.5cu.748_B20211015 - OS Command Injection via MQTT Packet
Feb 19, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25132 CRITICAL
TOTOLINK T6 V3 Firmware 4.1.5cu.748_B20211015 - Command Injection via MQTT Packet
Feb 19, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-25131 CRITICAL
TOTOLINK T6 and T10 Firmware - OS Command Injection via MQTT Packet
Feb 19, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-25130 CRITICAL
TOTOLINK T6 and T10 Firmware - OS Command Injection via MQTT Packet
Feb 19, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-42893 HIGH
TOTOLINK EX1200T V4.1.2cu.5215 - Unauthenticated Sensitive Information Exposure via getSysStatusCfg
Jun 03, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-42892 MEDIUM
TOTOLINK EX1200T V4.1.2cu.5215 - Unauthenticated Telnet Access via Hard-coded Credentials
Jun 03, 2022
CVSS 4.3
EPSS 0.01
CVE-2021-42891 HIGH
TOTOLINK EX1200T V4.1.2cu.5215 - Unauthenticated Sensitive Information Disclosure
Jun 03, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-42890 CRITICAL
TOTOLINK EX1200T V4.1.2cu.5215 - Remote Command Injection via NTPSyncWithHost Function
Jun 03, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-42889 HIGH
TOTOLINK EX1200T V4.1.2cu.5215 - Unauthenticated Sensitive Information Exposure
Jun 03, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-42888 CRITICAL
TOTOLINK EX1200T V4.1.2cu.5215 - OS Command Injection via setLanguageCfg Function
Jun 03, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-42887 CRITICAL NUCLEI
TOTOLINK EX1200T V4.1.2cu.5215 - Auth Bypass
Jun 03, 2022
CVSS 9.8
EPSS 0.43
CVE-2021-42886 HIGH
TOTOLINK EX1200T V4.1.2cu.5215 - Unauthenticated Exposure of Sensitive Information via apmib Configuration File
Jun 03, 2022
CVSS 7.5
EPSS 0.02