Vulnerabilities > Totolink > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-02-24 CVE-2022-25076 OS Command Injection vulnerability in Totolink A800R Firmware V4.1.2Cu.5137B20200730
TOTOLink A800R V4.1.2cu.5137_B20200730 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25077 OS Command Injection vulnerability in Totolink A3100R Firmware 4.1.2Cu.5050B20200504
TOTOLink A3100R V4.1.2cu.5050_B20200504 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25078 OS Command Injection vulnerability in Totolink A3600R Firmware 4.1.2Cu.5182B20201102
TOTOLink A3600R V4.1.2cu.5182_B20201102 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25079 OS Command Injection vulnerability in Totolink A810R Firmware 4.1.2Cu.5182B20201026
TOTOLink A810R V4.1.2cu.5182_B20201026 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25080 OS Command Injection vulnerability in Totolink A830R Firmware 5.9C.4729B20191112
TOTOLink A830R V5.9c.4729_B20191112 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25081 OS Command Injection vulnerability in Totolink T10 V2 Firmware 5.9C.5061B20200511
TOTOLink T10 V5.9c.5061_B20200511 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25082 OS Command Injection vulnerability in Totolink A950Rg Firmware 4.1.2Cu.5204B20210112/5.9C.4050B20190424
TOTOLink A950RG V5.9c.4050_B20190424 and V4.1.2cu.5204_B20210112 were discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25083 OS Command Injection vulnerability in Totolink A860R Firmware 4.1.2Cu.5182B20201027
TOTOLink A860R V4.1.2cu.5182_B20201027 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-24 CVE-2022-25084 OS Command Injection vulnerability in Totolink T6 Firmware 5.9C.4085B20190428
TOTOLink T6 V5.9c.4085_B20190428 was discovered to contain a command injection vulnerability in the "Main" function.
network
low complexity
totolink CWE-78
critical
9.8
2022-02-19 CVE-2022-25130 Command Injection vulnerability in Totolink T10 Firmware and T6 Firmware
A command injection vulnerability in the function updateWifiInfo of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.
network
low complexity
totolink CWE-77
critical
9.8