← Back

Totolink

totolink

1,106 CVEs • 155 products

Products (155)

Click to collapse
Toggle
X5000r Firmware
x5000r_firmware
70 CVEs
A3300r Firmware
a3300r_firmware
64 CVEs
A3002r Firmware
a3002r_firmware
61 CVEs
X6000r Firmware
x6000r_firmware
57 CVEs
A3002ru Firmware
a3002ru_firmware
49 CVEs
A3100r Firmware
a3100r_firmware
47 CVEs
X2000r Firmware
x2000r_firmware
45 CVEs
A3700r Firmware
a3700r_firmware
43 CVEs
T6 Firmware
t6_firmware
39 CVEs
N600r Firmware
n600r_firmware
38 CVEs
Ex1200t Firmware
ex1200t_firmware
37 CVEs
A7100ru Firmware
a7100ru_firmware
37 CVEs
Lr350 Firmware
lr350_firmware
36 CVEs
A7000r Firmware
a7000r_firmware
35 CVEs
A950rg Firmware
a950rg_firmware
33 CVEs
A702r Firmware
a702r_firmware
32 CVEs
A810r Firmware
a810r_firmware
29 CVEs
A720r Firmware
a720r_firmware
28 CVEs
Ex1800t Firmware
ex1800t_firmware
28 CVEs
Nr1800x Firmware
nr1800x_firmware
27 CVEs
T8 Firmware
t8_firmware
26 CVEs
A830r Firmware
a830r_firmware
25 CVEs
A3000ru Firmware
a3000ru_firmware
25 CVEs
A3600r Firmware
a3600r_firmware
25 CVEs
X15 Firmware
x15_firmware
25 CVEs
Ca300 Poe Firmware
ca300-poe_firmware
24 CVEs
A800r Firmware
a800r_firmware
23 CVEs
T10 Firmware
t10_firmware
22 CVEs
N200re Firmware
n200re_firmware
21 CVEs
N350rt Firmware
n350rt_firmware
21 CVEs
N150rt Firmware
n150rt_firmware
19 CVEs
Ex200 Firmware
ex200_firmware
19 CVEs
Lr1200gb Firmware
lr1200gb_firmware
19 CVEs
Cp450 Firmware
cp450_firmware
19 CVEs
X18 Firmware
x18_firmware
14 CVEs
Cp900 Firmware
cp900_firmware
13 CVEs
A6000r Firmware
a6000r_firmware
13 CVEs
N300rt Firmware
n300rt_firmware
11 CVEs
Ex1200l Firmware
ex1200l_firmware
11 CVEs
Ca600 Poe Firmware
ca600-poe_firmware
10 CVEs
A860r Firmware
a860r_firmware
8 CVEs
Cp900l Firmware
cp900l_firmware
8 CVEs
Cp300+ Firmware
cp300+_firmware
7 CVEs
N300rh Firmware
n300rh_firmware
7 CVEs
Ex300 V2 Firmware
ex300_v2_firmware
6 CVEs
N100re Firmware
n100re_firmware
5 CVEs
N301rt Firmware
n301rt_firmware
4 CVEs
N302r Firmware
n302r_firmware
4 CVEs
T10 V2 Firmware
t10_v2_firmware
4 CVEs
N200re V5 Firmware
n200re-v5_firmware
4 CVEs
N300rh V3 Firmware
n300rh-v3_firmware
3 CVEs
N302r Plus Firmware
n302r_plus_firmware
3 CVEs
Wa300 Firmware
wa300_firmware
3 CVEs
A850r V1 Firmware
a850r-v1_firmware
2 CVEs
F1 V2 Firmware
f1-v2_firmware
2 CVEs
F2 V1 Firmware
f2-v1_firmware
2 CVEs
N150rt V2 Firmware
n150rt-v2_firmware
2 CVEs
N151rt V2 Firmware
n151rt-v2_firmware
2 CVEs
N300rh V2 Firmware
n300rh-v2_firmware
2 CVEs
N300rt V2 Firmware
n300rt-v2_firmware
2 CVEs
A8000ru Firmware
a8000ru_firmware
2 CVEs
Lr1200 Firmware
lr1200_firmware
2 CVEs
N350r Firmware
n350r_firmware
2 CVEs
A3002ru V1 Firmware
a3002ru-v1_firmware
1 CVE
A3002ru V2 Firmware
a3002ru-v2_firmware
1 CVE
A702r V2 Firmware
a702r-v2_firmware
1 CVE
A702r V3 Firmware
a702r-v3_firmware
1 CVE
N100re V3 Firmware
n100re-v3_firmware
1 CVE
N200re V3 Firmware
n200re-v3_firmware
1 CVE
N200re V4 Firmware
n200re-v4_firmware
1 CVE
N210re Firmware
n210re_firmware
1 CVE
Ar3100r Firmware
ar3100r_firmware
1 CVE
A7000ru Firmware
a7000ru_firmware
1 CVE
A3002ru V3 Firmware
a3002ru-v3_firmware
1 CVE
A6000ub Firmware
a6000ub_firmware
1 CVE
N300rb Firmware
n300rb_firmware
1 CVE
Wa1200 Poe
wa1200-poe
1 CVE
Wa1200 Poe Firmware
wa1200-poe_firmware
1 CVE
Soho
soho
0 CVEs
A3002ru
a3002ru
0 CVEs
A702r
a702r
0 CVEs
N301rt
n301rt
0 CVEs
N302r
n302r
0 CVEs
N300rt
n300rt
0 CVEs
N200re
n200re
0 CVEs
N150rt
n150rt
0 CVEs
N100re
n100re
0 CVEs
A850r V1
a850r-v1
0 CVEs
F1 V2
f1-v2
0 CVEs
F2 V1
f2-v1
0 CVEs
N150rt V2
n150rt-v2
0 CVEs
N151rt V2
n151rt-v2
0 CVEs
N300rh V2
n300rh-v2
0 CVEs
N300rh V3
n300rh-v3
0 CVEs
N300rt V2
n300rt-v2
0 CVEs
A3002r
a3002r
0 CVEs
A3002ru V1
a3002ru-v1
0 CVEs
A3002ru V2
a3002ru-v2
0 CVEs
A702r V2
a702r-v2
0 CVEs
A702r V3
a702r-v3
0 CVEs

CVEs (1,106)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-44249
1Totolink
1Lr350 Firmware
Apr 25, 2025
Nov 23, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 contains a command injection via the FileName parameter in the UploadFirmwareFile function.
CVE-2022-41528
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain an authenticated stack overflow via the text parameter in the setSmsCfg function.
CVE-2022-41527
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain an authenticated stack overflow via the pppoeUser parameter in the setOpModeCfg function.
CVE-2022-41526
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain an authenticated stack overflow via the ip parameter in the setDiagnosisCfg function.
CVE-2022-41525
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain a command injection vulnerability via the OpModeCfg function at /cgi-bin/cstecgi.cgi.
CVE-2022-41524
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain an authenticated stack overflow via the week, sTime, and eTime parameters in the setParentalRules function.
CVE-2022-41523
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain an authenticated stack overflow via the command parameter in the setTracerouteCfg function.
CVE-2022-41522
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain an unauthenticated stack overflow via the "main" function.
CVE-2022-41521
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain an authenticated stack overflow via the sPort/ePort parameter in the setIpPortFilterRules function.
CVE-2022-41520
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain an authenticated stack overflow via the File parameter in the UploadCustomModule function.
CVE-2022-41518
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain a command injection vulnerability via the UploadFirmwareFile function at /cgi-bin/cstecgi.cgi.
CVE-2022-41517
1Totolink
1Nr1800x Firmware
Nov 21, 2024
Oct 6, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain a stack overflow in the lang parameter in the setLanguageCfg function
CVE-2022-40475
1Totolink
1A860r Firmware
May 21, 2025
Sep 29, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a command injection via the component /cgi-bin/downloadFile.cgi.
CVE-2022-38828
1Totolink
1T6 Firmware
Nov 21, 2024
Sep 16, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TOTOLINK T6 V4.1.5cu.709_B20210518 is vulnerable to command injection via cstecgi.cgi
CVE-2022-38827
1Totolink
1T6 Firmware
Nov 21, 2024
Sep 16, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TOTOLINK T6 V4.1.5cu.709_B20210518 is vulnerable to Buffer Overflow via cstecgi.cgi
CVE-2022-38826
1Totolink
1T6 Firmware
Nov 21, 2024
Sep 16, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In TOTOLINK T6 V4.1.5cu.709_B20210518, there is an execute arbitrary command in cstecgi.cgi.
CVE-2022-38823
1Totolink
1T6 Firmware
Nov 21, 2024
Sep 16, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In TOTOLINK T6 V4.1.5cu.709_B20210518, there is a hard coded password for root in /etc/shadow.sample.
CVE-2022-38535
1Totolink
1A720r Firmware
Nov 21, 2024
Sep 15, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
TOTOLINK-720R v4.1.5cu.374 was discovered to contain a remote code execution (RCE) vulnerability via the setTracerouteCfg function.
CVE-2022-38534
1Totolink
1A720r Firmware
Nov 21, 2024
Sep 15, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
TOTOLINK-720R v4.1.5cu.374 was discovered to contain a remote code execution (RCE) vulnerability via the setdiagnosicfg function.
CVE-2022-38308
1Totolink
1A7000ru Firmware
Nov 21, 2024
Sep 14, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
TOTOLink A700RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the lang parameter in the function cstesystem. This vulnerability allows attackers to execute arbitrary commands via a...Show more
TOTOLink A700RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the lang parameter in the function cstesystem. This vulnerability allows attackers to execute arbitrary commands via a crafted payload.Show less