Vulnerabilities > Totolink > T8 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-09-08 CVE-2024-8573 Classic Buffer Overflow vulnerability in Totolink T10 Firmware and T8 Firmware
A vulnerability, which was classified as critical, was found in TOTOLINK AC1200 T8 and AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207.
network
low complexity
totolink CWE-120
8.8
2024-08-22 CVE-2024-8078 Classic Buffer Overflow vulnerability in Totolink T8 Firmware 4.1.5Cu.862B20230228
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228.
network
low complexity
totolink CWE-120
critical
9.8
2024-08-22 CVE-2024-8079 Classic Buffer Overflow vulnerability in Totolink T8 Firmware 4.1.5Cu.862B20230228
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228.
network
low complexity
totolink CWE-120
critical
9.8
2024-08-22 CVE-2024-8075 OS Command Injection vulnerability in Totolink T8 Firmware 4.1.5Cu.862B20230228
A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 and classified as critical.
network
low complexity
totolink CWE-78
critical
9.8
2024-08-22 CVE-2024-8076 Classic Buffer Overflow vulnerability in Totolink T8 Firmware 4.1.5Cu.862B20230228
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 and classified as critical.
network
low complexity
totolink CWE-120
critical
9.8
2024-08-22 CVE-2024-8077 OS Command Injection vulnerability in Totolink T8 Firmware 4.1.5Cu.862B20230228
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228.
network
low complexity
totolink CWE-78
critical
9.8
2024-01-26 CVE-2024-0944 Unspecified vulnerability in Totolink T8 Firmware 4.1.5Cu.83320220905
A vulnerability was found in Totolink T8 4.1.5cu.833_20220905.
network
low complexity
totolink
5.3
2024-01-16 CVE-2024-0569 Missing Authorization vulnerability in Totolink T8 Firmware 4.1.5Cu.83320220905
A vulnerability classified as problematic has been found in Totolink T8 4.1.5cu.833_20220905.
network
low complexity
totolink CWE-862
critical
9.1
2023-02-03 CVE-2023-24150 Command Injection vulnerability in Totolink T8 Firmware V4.1.5Cu
A command injection vulnerability in the serverIp parameter in the function meshSlaveDlfw of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet.
network
low complexity
totolink CWE-77
critical
9.8
2023-02-03 CVE-2023-24151 Command Injection vulnerability in Totolink T8 Firmware V4.1.5Cu
A command injection vulnerability in the ip parameter in the function recvSlaveCloudCheckStatus of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet.
network
low complexity
totolink CWE-77
critical
9.8