A3700r Firmware

a3700r_firmware

Vendor: Totolink • 43 CVEs

CVEs (43)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-37632 1Totolink 1A3700r Firmware Mar 13, 2025 Jun 13, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the password parameter in function loginAuth .
CVE-2024-37631 1Totolink 1A3700r Firmware Apr 3, 2025 Jun 13, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the File parameter in function UploadCustomModule.
CVE-2024-22663 1Totolink 1A3700r Firmware May 30, 2025 Jan 23, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOLINK_A3700R_V9.1.2u.6165_20211012has a command Injection vulnerability via setOpModeCfg
CVE-2024-22662 1Totolink 1A3700r Firmware Jun 20, 2025 Jan 23, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOLINK A3700R_V9.1.2u.6165_20211012 has a stack overflow vulnerability via setParentalRules
CVE-2024-22660 1Totolink 1A3700r Firmware Jun 20, 2025 Jan 23, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOLINK_A3700R_V9.1.2u.6165_20211012has a stack overflow vulnerability via setLanguageCfg
CVE-2023-52031 1Totolink 1A3700r Firmware Jun 3, 2025 Jan 11, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a remote command execution (RCE) vulnerability via the UploadFirmwareFile function.
CVE-2023-52030 1Totolink 1A3700r Firmware May 14, 2025 Jan 11, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a remote command execution (RCE) vulnerability via the setOpModeCfg function.
CVE-2023-52029 1Totolink 1A3700r Firmware Jun 20, 2025 Jan 11, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a remote command execution (RCE) vulnerability via the setDiagnosisCfg function.
CVE-2023-52028 1Totolink 1A3700r Firmware Jun 20, 2025 Jan 11, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a remote command execution (RCE) vulnerability via the setTracerouteCfg function.
CVE-2023-52027 1Totolink 1A3700r Firmware Jun 17, 2025 Jan 11, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a remote command execution (RCE) vulnerability via the NTPSyncWithHost function.
CVE-2023-50147 1Totolink 1A3700r Firmware Nov 21, 2024 Dec 22, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 There is an arbitrary command execution vulnerability in the setDiagnosisCfg function of the cstecgi .cgi of the TOTOlink A3700R router device in its firmware version V9.1.2u.5822_B20200513.
CVE-2023-48192 1Totolink 1A3700r Firmware Nov 21, 2024 Nov 20, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue in TOTOlink A3700R v.9.1.2u.6134_B20201202 allows a local attacker to execute arbitrary code via the setTracerouteCfg function.
CVE-2023-46574 1Totolink 1A3700r Firmware Nov 21, 2024 Oct 25, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in TOTOLINK A3700R v.9.1.2u.6165_20211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function.
CVE-2023-43141 1Totolink 2A3700r Firmware N600r Firmware Nov 21, 2024 Sep 25, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137 are vulnerable to Incorrect Access Control.
CVE-2022-36466 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a stack overflow via the ip parameter in the function setDiagnosisCfg.
CVE-2022-36465 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a stack overflow via the pppoeUser parameter.
CVE-2022-36464 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a stack overflow via the sPort parameter in the function setIpPortFilterRules.
CVE-2022-36463 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a stack overflow via the command parameter in the function setTracerouteCfg.
CVE-2022-36462 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a stack overflow via the lang parameter in the function setLanguageCfg.
CVE-2022-36461 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg.

Previous 123 Next