Vulnerabilities > Totolink > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-30 | CVE-2021-46008 | Use of Hard-coded Credentials vulnerability in Totolink A3100R Firmware 5.9C.4577 In totolink a3100r V5.9c.4577, the hard-coded telnet password can be discovered from official released firmware. | 8.8 |
| 2022-03-30 | CVE-2021-46010 | Use of Insufficiently Random Values vulnerability in Totolink A3100R Firmware 5.9C.4577 Totolink A3100R V5.9c.4577 suffers from Use of Insufficiently Random Values via the web configuration. | 8.8 |
| 2022-03-30 | CVE-2022-25008 | Missing Authentication for Critical Function vulnerability in Totolink Ex1200T Firmware and Ex300 V2 Firmware totolink EX300_v2 V4.0.3c.140_B20210429 and EX1200T V4.1.2cu.5230_B20210706 does not contain an authentication mechanism. | 8.8 |
| 2022-02-04 | CVE-2021-44246 | Unspecified vulnerability in Totolink A3100R Firmware, A720R Firmware and A830R Firmware Totolink devices A3100R v4.1.2cu.5050_B20200504, A830R v5.9c.4729_B20191112, and A720R v4.1.5cu.470_B20200911 were discovered to contain a stack overflow in the function setNoticeCfg. | 7.5 |
| 2022-02-04 | CVE-2021-45734 | Unspecified vulnerability in Totolink X5000R Firmware 9.1.0U.6118B20201102 TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to contain a stack overflow in the function setUrlFilterRules. | 7.5 |
| 2022-02-04 | CVE-2021-45735 | Cleartext Transmission of Sensitive Information vulnerability in Totolink X5000R Firmware 9.1.0U.6118B20201102 TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to use the HTTP protocol for authentication into the admin interface, allowing attackers to intercept user credentials via packet capture software. | 7.5 |
| 2022-02-04 | CVE-2021-45736 | Unspecified vulnerability in Totolink X5000R Firmware 9.1.0U.6118B20201102 TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to contain a stack overflow in the function setL2tpServerCfg. | 7.5 |
| 2022-02-04 | CVE-2021-45737 | Unspecified vulnerability in Totolink A720R Firmware 4.1.5Cu.470B20200911 TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a stack overflow in the Form_Login function. | 7.5 |
| 2022-02-04 | CVE-2021-45739 | Unspecified vulnerability in Totolink A720R Firmware 4.1.5Cu.470B20200911 TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a stack overflow in the Form_Login function. | 7.5 |
| 2022-02-04 | CVE-2021-45741 | Unspecified vulnerability in Totolink X5000R Firmware 9.1.0U.6118B20201102 TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to contain a stack overflow in the function setIpv6Cfg. | 7.5 |