Filtered by vendor Totolink
Subscribe
Total
514 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-46410 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution vulnerability via the sub_ The 416F60 function. | |||||
CVE-2023-43141 | 1 Totolink | 4 A3700r, A3700r Firmware, N600r and 1 more | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137 are vulnerable to Incorrect Access Control. | |||||
CVE-2023-46416 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_ The 41A414 function. | |||||
CVE-2023-46408 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution vulnerability via the sub_ The 41DD80 function. | |||||
CVE-2023-46423 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_417094 function. | |||||
CVE-2023-40042 | 1 Totolink | 2 T10 V2, T10 V2 Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK T10_v2 5.9c.5061_B20200511 has a stack-based buffer overflow in setStaticDhcpConfig in /lib/cste_modules/lan.so. Attackers can send crafted data in an MQTT packet, via the comment parameter, to control the return address and execute code. | |||||
CVE-2023-46550 | 1 Totolink | 2 X2000r, X2000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMapDelDevice. | |||||
CVE-2023-46574 | 1 Totolink | 2 A3700r, A3700r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
An issue in TOTOLINK A3700R v.9.1.2u.6165_20211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function. | |||||
CVE-2023-46557 | 1 Totolink | 2 X2000r, X2000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMultiAPVLAN. | |||||
CVE-2023-46553 | 1 Totolink | 2 X2000r, X2000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formParentControl. | |||||
CVE-2023-46485 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary code via the setTracerouteCfg function of the stecgi.cgi component. | |||||
CVE-2023-46419 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_415730 function. | |||||
CVE-2023-46484 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary code via the setLedCfg function. | |||||
CVE-2023-36952 | 1 Totolink | 2 Cp300\+, Cp300\+ Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK CP300+ V5.2cu.7594_B20200910 was discovered to contain a stack overflow via the pingIp parameter in the function setDiagnosisCfg. | |||||
CVE-2023-46977 | 1 Totolink | 2 Lr1200gb, Lr1200gb Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK LR1200GB V9.1.0u.6619_B20230130 was discovered to contain a stack overflow via the password parameter in the function loginAuth. | |||||
CVE-2023-46556 | 1 Totolink | 2 X2000r, X2000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formFilter. | |||||
CVE-2023-46421 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_411D00 function. | |||||
CVE-2023-46979 | 1 Totolink | 2 X6000r, X6000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X6000R V9.4.0cu.852_B20230719 was discovered to contain a command injection vulnerability via the enable parameter in the setLedCfg function. | |||||
CVE-2023-46540 | 1 Totolink | 2 X2000r, X2000r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formNtp. | |||||
CVE-2023-46976 | 1 Totolink | 2 A3300r, A3300r Firmware | 2023-12-10 | N/A | 9.8 CRITICAL |
TOTOLINK A3300R 17.0.0cu.557_B20221024 contains a command injection via the file_name parameter in the UploadFirmwareFile function. |