Vulnerabilities > Totolink

DATE	CVE	VULNERABILITY TITLE	RISK
2025-01-15	CVE-2024-57015	OS Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "hour" parameter in setScheduleCfg. network low complexity totolink CWE-78	8.8
2025-01-15	CVE-2024-57016	OS Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "user" parameter in setVpnAccountCfg. network low complexity totolink CWE-78	8.8
2025-01-15	CVE-2024-57017	OS Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "pass" parameter in setVpnAccountCfg. network low complexity totolink CWE-78	8.8
2025-01-15	CVE-2024-57018	OS Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "desc" parameter in setVpnAccountCfg. network low complexity totolink CWE-78	8.8
2025-01-15	CVE-2024-57019	OS Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "limit" parameter in setVpnAccountCfg. network low complexity totolink CWE-78	8.8
2025-01-15	CVE-2024-57020	OS Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "sMinute" parameter in setWiFiScheduleCfg. network low complexity totolink CWE-78	8.8
2025-01-15	CVE-2024-57021	OS Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "eHour" parameter in setWiFiScheduleCfg. network low complexity totolink CWE-78	8.8
2025-01-15	CVE-2024-57022	OS Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection vulnerability via the "sHour" parameter in setWiFiScheduleCfg. network low complexity totolink CWE-78	8.8
2024-12-09	CVE-2024-12352	Out-of-bounds Write vulnerability in Totolink Ex1800T Firmware 9.1.0Cu.2112B20220316 A vulnerability classified as problematic was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316. network low complexity totolink CWE-787 critical	9.8
2024-11-22	CVE-2024-52723	OS Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.1041B20240224 In TOTOLINK X6000R V9.4.0cu.1041_B20240224 in the shttpd file, the Uci_Set Str function is used without strict parameter filtering. network low complexity totolink CWE-78 critical	9.8

Vulnerabilities > Totolink {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Totolink"}]}

Vulnerabilities > Totolink