Vulnerabilities > Totolink > A3000Ru Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-03-15 CVE-2022-26214 OS Command Injection vulnerability in Totolink products
Totolink A830R V5.9c.4729_B20191112, A3100R V4.1.2cu.5050_B20200504, A950RG V4.1.2cu.5161_B20200903, A800R V4.1.2cu.5137_B20200730, A3000RU V5.9c.5185_B20201128, and A810R V4.1.2cu.5182_B20201026 were discovered to contain a command injection vulnerability in the function NTPSyncWithHost.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25075 OS Command Injection vulnerability in Totolink A3000Ru Firmware V5.9C.2280B20180512
TOTOLink A3000RU V5.9c.2280_B20180512 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8