Vulnerabilities > Totolink > Ex1800T Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-12-09 CVE-2024-12352 Out-of-bounds Write vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
A vulnerability classified as problematic was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316.
network
low complexity
totolink CWE-787
critical
9.8
2024-01-12 CVE-2023-52026 Unspecified vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOlink EX1800T V9.1.0cu.2112_B20220316 was discovered to contain a remote command execution (RCE) vulnerability via the telnet_enabled parameter of the setTelnetCfg interface
network
low complexity
totolink
critical
9.8
2023-12-22 CVE-2023-51011 Unspecified vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanPriDns parameter’ of the setLanConfig interface of the cstecgi .cgi
network
low complexity
totolink
critical
9.8
2023-12-22 CVE-2023-51012 Unspecified vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanGateway parameter’ of the setLanConfig interface of the cstecgi .cgi.
network
low complexity
totolink
critical
9.8
2023-12-22 CVE-2023-51013 Unspecified vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanNetmask parameter’ of the setLanConfig interface of the cstecgi .cgi.
network
low complexity
totolink
critical
9.8
2023-12-22 CVE-2023-51014 Unspecified vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOLINK EX1800T V9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanSecDns parameter’ of the setLanConfig interface of the cstecgi .cgi
network
low complexity
totolink
critical
9.8
2023-12-22 CVE-2023-51015 Unspecified vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOLINX EX1800T v9.1.0cu.2112_B20220316 is vulnerable to arbitrary command execution in the ‘enable parameter’ of the setDmzCfg interface of the cstecgi .cgi
network
low complexity
totolink
critical
9.8
2023-12-22 CVE-2023-51016 Command Injection vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the setRebootScheCfg interface of the cstecgi .cgi.
network
low complexity
totolink CWE-77
critical
9.8
2023-12-22 CVE-2023-51017 Unspecified vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi.
network
low complexity
totolink
critical
9.8
2023-12-22 CVE-2023-51018 Unspecified vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316
TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘opmode’ parameter of the setWiFiApConfig interface of the cstecgi .cgi.
network
low complexity
totolink
critical
9.8