Totolink

T8 Firmware

26 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-8573

Exploit
  • EPSS 0.6%
  • Published 08.09.2024 10:15:01
  • Last modified 03.03.2025 18:15:30

A vulnerability, which was classified as critical, was found in TOTOLINK AC1200 T8 and AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207. This affects the function setParentalRules of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument desc/w...

9.8

CVE-2024-8078

Exploit
  • EPSS 0.21%
  • Published 22.08.2024 21:15:17
  • Last modified 13.12.2024 14:51:05

A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been declared as critical. This vulnerability affects the function setTracerouteCfg. The manipulation leads to buffer overflow. The attack can be initiated remotely. NOTE: ...

9.8

CVE-2024-8079

Exploit
  • EPSS 0.22%
  • Published 22.08.2024 21:15:17
  • Last modified 13.12.2024 14:53:21

A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been rated as critical. This issue affects the function exportOvpn. The manipulation leads to buffer overflow. The attack may be initiated remotely. NOTE: The vendor was co...

9.8

CVE-2024-8077

Exploit
  • EPSS 2.08%
  • Published 22.08.2024 20:15:11
  • Last modified 13.12.2024 14:50:34

A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been classified as critical. This affects the function setTracerouteCfg. The manipulation leads to os command injection. It is possible to initiate the attack remotely. NOT...

9.8

CVE-2024-8076

  • EPSS 0.26%
  • Published 22.08.2024 20:15:11
  • Last modified 13.12.2024 14:46:25

A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 and classified as critical. Affected by this issue is the function setDiagnosisCfg. The manipulation leads to buffer overflow. The attack may be launched remotely. NOTE: The vendor...

9.8

CVE-2024-8075

  • EPSS 0.78%
  • Published 22.08.2024 20:15:10
  • Last modified 13.12.2024 14:46:14

A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 and classified as critical. Affected by this vulnerability is the function setDiagnosisCfg. The manipulation leads to os command injection. The attack can be launched remotely...

5.3

CVE-2024-0944

  • EPSS 1.63%
  • Published 26.01.2024 20:15:54
  • Last modified 21.11.2024 08:47:49

A vulnerability was found in Totolink T8 4.1.5cu.833_20220905. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /cgi-bin/cstecgi.cgi. The manipulation leads to session expiration. The attack may be la...

9.1

CVE-2024-0569

Exploit
  • EPSS 0.37%
  • Published 16.01.2024 13:15:08
  • Last modified 21.11.2024 08:46:53

A vulnerability classified as problematic has been found in Totolink T8 4.1.5cu.833_20220905. This affects the function getSysStatusCfg of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation of the argument ssid/key leads...

9.8

CVE-2023-24157

Exploit
  • EPSS 1.63%
  • Published 03.02.2023 16:15:15
  • Last modified 26.03.2025 15:15:47

A command injection vulnerability in the serverIp parameter in the function updateWifiInfo of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet.

9.8

CVE-2023-24156

Exploit
  • EPSS 1.63%
  • Published 03.02.2023 16:15:14
  • Last modified 26.03.2025 15:15:47

A command injection vulnerability in the ip parameter in the function recvSlaveUpgstatus of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet.