Vulnerabilities > Totolink > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-08-12 CVE-2024-42545 Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.5822B20200513
TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function.
network
low complexity
totolink CWE-120
critical
9.8
2024-08-12 CVE-2024-42520 Classic Buffer Overflow vulnerability in Totolink A3002R Firmware 4.0.0B20230531.1404
TOTOLINK A3002R v4.0.0-B20230531.1404 contains a buffer overflow vulnerability in /bin/boa via formParentControl.
network
low complexity
totolink CWE-120
critical
9.8
2024-08-05 CVE-2024-7465 Classic Buffer Overflow vulnerability in Totolink Cp450 Firmware 4.1.0Cu.747B20191224
A vulnerability, which was classified as critical, was found in TOTOLINK CP450 4.1.0cu.747_B20191224.
network
low complexity
totolink CWE-120
critical
9.8
2024-08-05 CVE-2024-7463 Classic Buffer Overflow vulnerability in Totolink Cp900 Firmware 6.3C.566
A vulnerability classified as critical was found in TOTOLINK CP900 6.3c.566.
network
low complexity
totolink CWE-120
critical
9.8
2024-08-05 CVE-2024-7464 Command Injection vulnerability in Totolink Cp900 Firmware 6.3C.566
A vulnerability, which was classified as critical, has been found in TOTOLINK CP900 6.3c.566.
network
low complexity
totolink CWE-77
critical
9.8
2024-08-05 CVE-2024-7462 Classic Buffer Overflow vulnerability in Totolink N350Rt Firmware 9.3.5U.6139B20201216
A vulnerability classified as critical has been found in TOTOLINK N350RT 9.3.5u.6139_B20201216.
network
low complexity
totolink CWE-120
critical
9.8
2024-08-01 CVE-2024-7332 Use of Hard-coded Credentials vulnerability in Totolink Cp450 Firmware 4.1.0Cu.747B20191224
A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224.
network
low complexity
totolink CWE-798
critical
9.8
2024-07-23 CVE-2024-41319 Command Injection vulnerability in Totolink A6000R Firmware 1.0.1B20201211.2000
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the cmd parameter in the webcmd function.
network
low complexity
totolink CWE-77
critical
9.8
2024-06-13 CVE-2024-37632 Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the password parameter in function loginAuth .
network
low complexity
totolink CWE-120
critical
9.8
2024-06-13 CVE-2024-37635 Classic Buffer Overflow vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiBasicCfg
network
low complexity
totolink CWE-120
critical
9.8