Vulnerabilities > Totolink > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-24 | CVE-2023-52038 | Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 An issue discovered in TOTOLINK X6000R v9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the sub_415C80 function. | 9.8 |
| 2024-01-24 | CVE-2023-52039 | Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 An issue discovered in TOTOLINK X6000R v9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the sub_415AA4 function. | 9.8 |
| 2024-01-24 | CVE-2023-52040 | Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 An issue discovered in TOTOLINK X6000R v9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the sub_41284C function. | 9.8 |
| 2024-01-23 | CVE-2024-22660 | Out-of-bounds Write vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK_A3700R_V9.1.2u.6165_20211012has a stack overflow vulnerability via setLanguageCfg | 9.8 |
| 2024-01-23 | CVE-2024-22662 | Out-of-bounds Write vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK A3700R_V9.1.2u.6165_20211012 has a stack overflow vulnerability via setParentalRules | 9.8 |
| 2024-01-23 | CVE-2024-22663 | Command Injection vulnerability in Totolink A3700R Firmware 9.1.2U.616520211012 TOTOLINK_A3700R_V9.1.2u.6165_20211012has a command Injection vulnerability via setOpModeCfg | 9.8 |
| 2024-01-16 | CVE-2023-52042 | Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 An issue discovered in sub_4117F8 function in TOTOLINK X6000R V9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the 'lang' parameter. | 9.8 |
| 2024-01-16 | CVE-2023-52041 | Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 An issue discovered in TOTOLINK X6000R V9.4.0cu.852_B20230719 allows attackers to run arbitrary code via the sub_410118 function of the shttpd program. | 9.8 |
| 2024-01-16 | CVE-2024-0579 | Command Injection vulnerability in Totolink X2000R Firmware 1.0.0B20221212.1452 A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452. | 9.8 |
| 2024-01-16 | CVE-2024-0576 | Stack-based Buffer Overflow vulnerability in Totolink Lr1200Gb Firmware 9.1.0U.6619B20230130 A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. | 9.8 |