Vulnerabilities > Totolink

DATE CVE VULNERABILITY TITLE RISK
2023-10-25 CVE-2023-46423 Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.652B20230116
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_417094 function.
network
low complexity
totolink CWE-77
critical
 9.8
9.8
2023-10-25 CVE-2023-46424 Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.652B20230116
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_422BD4 function.
network
low complexity
totolink CWE-77
critical
 9.8
9.8
2023-10-25 CVE-2023-46540 Out-of-bounds Write vulnerability in Totolink X2000R Firmware 1.0.0B20230221.0948
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formNtp.
network
low complexity
totolink CWE-787
critical
 9.8
9.8
2023-10-25 CVE-2023-46541 Out-of-bounds Write vulnerability in Totolink X2000R Firmware 1.0.0B20230221.0948
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formIpv6Setup.
network
low complexity
totolink CWE-787
critical
 9.8
9.8
2023-10-25 CVE-2023-46542 Out-of-bounds Write vulnerability in Totolink X2000R Firmware 1.0.0B20230221.0948
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMeshUploadConfig.
network
low complexity
totolink CWE-787
critical
 9.8
9.8
2023-10-25 CVE-2023-46543 Out-of-bounds Write vulnerability in Totolink X2000R Firmware 1.0.0B20230221.0948
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formWlSiteSurvey.
network
low complexity
totolink CWE-787
critical
 9.8
9.8
2023-10-25 CVE-2023-46544 Out-of-bounds Write vulnerability in Totolink X2000R Firmware 1.0.0B20230221.0948
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formWirelessTbl.
network
low complexity
totolink CWE-787
critical
 9.8
9.8
2023-10-25 CVE-2023-46545 Out-of-bounds Write vulnerability in Totolink X2000R Firmware 1.0.0B20230221.0948
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formWsc.
network
low complexity
totolink CWE-787
critical
 9.8
9.8
2023-10-25 CVE-2023-46546 Out-of-bounds Write vulnerability in Totolink X2000R Firmware 1.0.0B20230221.0948
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formStats.
network
low complexity
totolink CWE-787
critical
 9.8
9.8
2023-10-25 CVE-2023-46547 Out-of-bounds Write vulnerability in Totolink X2000R Firmware 1.0.0B20230221.0948
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formSysLog.
network
low complexity
totolink CWE-787
critical
 9.8
9.8