Vulnerabilities > Totolink
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-06-13 | CVE-2024-37632 | Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the password parameter in function loginAuth . | 9.8 |
2024-06-13 | CVE-2024-37635 | Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiBasicCfg | 9.8 |
2024-03-20 | CVE-2024-29419 | Cross-site Scripting vulnerability in Totolink X2000R Firmware 1.0.0B20221212.1452/1.0.0B20230221.0948/1.0.0B20230221.0948.Web There is a Cross-site scripting (XSS) vulnerability in the Wireless settings under the Easy Setup Page of TOTOLINK X2000R before v1.0.0-B20231213.1013. | 5.4 |
2024-03-16 | CVE-2024-28639 | Classic Buffer Overflow vulnerability in Totolink A7000R Firmware and X5000R Firmware Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115-B20201022, allow remote attackers to execute arbitrary code and cause a denial of service (DoS) via the IP field. | 9.8 |
2024-03-15 | CVE-2024-28401 | Cross-site Scripting vulnerability in Totolink X2000R Firmware 1.0.0B20221212.1452/1.0.0B20230221.0948/1.0.0B20230221.0948.Web TOTOLINK X2000R before v1.0.0-B20231213.1013 contains a Store Cross-site scripting (XSS) vulnerability in Root Access Control under the Wireless Page. | 5.4 |
2024-03-15 | CVE-2024-28403 | Cross-site Scripting vulnerability in Totolink X2000R Firmware 1.0.0B20221212.1452/1.0.0B20230221.0948/1.0.0B20230221.0948.Web TOTOLINK X2000R before V1.0.0-B20231213.1013 is vulnerable to Cross Site Scripting (XSS) via the VPN Page. | 5.4 |
2024-03-10 | CVE-2024-2353 | Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 A vulnerability, which was classified as critical, has been found in Totolink X6000R 9.4.0cu.852_20230719. | 8.8 |
2024-02-23 | CVE-2024-1781 | Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. | 9.8 |
2024-02-23 | CVE-2024-1783 | Unspecified vulnerability in Totolink Lr1200Gb Firmware 9.1.0U.6619B20230130/9.3.5U.6698B20230810 A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619_B20230130/9.3.5u.6698_B20230810. | 9.8 |
2024-02-20 | CVE-2024-1661 | Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 A vulnerability classified as problematic was found in Totolink X6000R 9.4.0cu.852_B20230719. | 5.5 |