Vulnerabilities > Totolink > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-05 | CVE-2024-7465 | Classic Buffer Overflow vulnerability in Totolink Cp450 Firmware 4.1.0Cu.747B20191224 A vulnerability, which was classified as critical, was found in TOTOLINK CP450 4.1.0cu.747_B20191224. | 9.8 |
| 2024-08-05 | CVE-2024-7463 | Classic Buffer Overflow vulnerability in Totolink Cp900 Firmware 6.3C.566 A vulnerability classified as critical was found in TOTOLINK CP900 6.3c.566. | 9.8 |
| 2024-08-05 | CVE-2024-7464 | Command Injection vulnerability in Totolink Cp900 Firmware 6.3C.566 A vulnerability, which was classified as critical, has been found in TOTOLINK CP900 6.3c.566. | 9.8 |
| 2024-08-05 | CVE-2024-7462 | Classic Buffer Overflow vulnerability in Totolink N350Rt Firmware 9.3.5U.6139B20201216 A vulnerability classified as critical has been found in TOTOLINK N350RT 9.3.5u.6139_B20201216. | 9.8 |
| 2024-08-01 | CVE-2024-7332 | Use of Hard-coded Credentials vulnerability in Totolink Cp450 Firmware 4.1.0Cu.747B20191224 A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224. | 9.8 |
| 2024-07-23 | CVE-2024-41319 | Command Injection vulnerability in Totolink A6000R Firmware 1.0.1B20201211.2000 TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the cmd parameter in the webcmd function. | 9.8 |
| 2024-06-13 | CVE-2024-37632 | Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the password parameter in function loginAuth . | 9.8 |
| 2024-06-13 | CVE-2024-37635 | Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiBasicCfg | 9.8 |
| 2024-01-30 | CVE-2024-24324 | Use of Hard-coded Credentials vulnerability in Totolink A8000Ru Firmware 7.1Cu.643B20200521 TOTOLINK A8000RU v7.1cu.643_B20200521 was discovered to contain a hardcoded password for root stored in /etc/shadow. | 9.8 |
| 2024-01-30 | CVE-2024-24325 | OS Command Injection vulnerability in Totolink A3300R Firmware 17.0.0Cu.557B20221024 TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setParentalRules function. | 9.8 |