Vulnerabilities > Totolink

DATE CVE VULNERABILITY TITLE RISK
2024-06-13 CVE-2024-37632 Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the password parameter in function loginAuth .
network
low complexity
totolink CWE-120
critical
9.8
2024-06-13 CVE-2024-37635 Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiBasicCfg
network
low complexity
totolink CWE-120
critical
9.8
2024-03-20 CVE-2024-29419 Cross-site Scripting vulnerability in Totolink X2000R Firmware 1.0.0B20221212.1452/1.0.0B20230221.0948/1.0.0B20230221.0948.Web
There is a Cross-site scripting (XSS) vulnerability in the Wireless settings under the Easy Setup Page of TOTOLINK X2000R before v1.0.0-B20231213.1013.
network
low complexity
totolink CWE-79
5.4
2024-03-16 CVE-2024-28639 Classic Buffer Overflow vulnerability in Totolink A7000R Firmware and X5000R Firmware
Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115-B20201022, allow remote attackers to execute arbitrary code and cause a denial of service (DoS) via the IP field.
network
low complexity
totolink CWE-120
critical
9.8
2024-03-15 CVE-2024-28401 Cross-site Scripting vulnerability in Totolink X2000R Firmware 1.0.0B20221212.1452/1.0.0B20230221.0948/1.0.0B20230221.0948.Web
TOTOLINK X2000R before v1.0.0-B20231213.1013 contains a Store Cross-site scripting (XSS) vulnerability in Root Access Control under the Wireless Page.
network
low complexity
totolink CWE-79
5.4
2024-03-15 CVE-2024-28403 Cross-site Scripting vulnerability in Totolink X2000R Firmware 1.0.0B20221212.1452/1.0.0B20230221.0948/1.0.0B20230221.0948.Web
TOTOLINK X2000R before V1.0.0-B20231213.1013 is vulnerable to Cross Site Scripting (XSS) via the VPN Page.
network
low complexity
totolink CWE-79
5.4
2024-03-10 CVE-2024-2353 Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719
A vulnerability, which was classified as critical, has been found in Totolink X6000R 9.4.0cu.852_20230719.
network
low complexity
totolink
8.8
2024-02-23 CVE-2024-1781 Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719
A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719.
network
low complexity
totolink
critical
9.8
2024-02-23 CVE-2024-1783 Unspecified vulnerability in Totolink Lr1200Gb Firmware 9.1.0U.6619B20230130/9.3.5U.6698B20230810
A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619_B20230130/9.3.5u.6698_B20230810.
network
low complexity
totolink
critical
9.8
2024-02-20 CVE-2024-1661 Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719
A vulnerability classified as problematic was found in Totolink X6000R 9.4.0cu.852_B20230719.
local
low complexity
totolink
5.5