Vulnerabilities > Totolink > A3700R Firmware > 9.1.2u.6165.20211012
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-23 | CVE-2024-22660 | Out-of-bounds Write vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK_A3700R_V9.1.2u.6165_20211012has a stack overflow vulnerability via setLanguageCfg | 9.8 |
2024-01-23 | CVE-2024-22662 | Out-of-bounds Write vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK A3700R_V9.1.2u.6165_20211012 has a stack overflow vulnerability via setParentalRules | 9.8 |
2024-01-23 | CVE-2024-22663 | Command Injection vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK_A3700R_V9.1.2u.6165_20211012has a command Injection vulnerability via setOpModeCfg | 9.8 |
2023-10-25 | CVE-2023-46574 | Command Injection vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 An issue in TOTOLINK A3700R v.9.1.2u.6165_20211012 allows a remote attacker to execute arbitrary code via the FileName parameter of the UploadFirmwareFile function. | 9.8 |