Totolink

A3002ru Firmware

47 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-4824

  • EPSS 0.22%
  • Published 17.05.2025 10:00:07
  • Last modified 23.05.2025 15:49:20

A vulnerability classified as critical has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formWsc of the component HTTP POST Request Handler. The manipulation of the argument su...

8.8

CVE-2025-4823

  • EPSS 0.22%
  • Published 17.05.2025 09:31:06
  • Last modified 23.05.2025 15:48:37

A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been rated as critical. Affected by this issue is the function submit-url of the file /boafrm/formReflashClientTbl of the component HTTP POST Request Handler...

8.8

CVE-2025-4733

  • EPSS 0.22%
  • Published 16.05.2025 00:31:09
  • Last modified 20.06.2025 14:09:01

A vulnerability, which was classified as critical, has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This issue affects some unknown processing of the file /boafrm/formIpQoS of the component HTTP POST Request Handler. The manipulati...

8.8

CVE-2025-4732

  • EPSS 0.22%
  • Published 16.05.2025 00:31:06
  • Last modified 20.06.2025 14:09:31

A vulnerability classified as critical was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This vulnerability affects unknown code of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ...

9

CVE-2025-4731

  • EPSS 0.22%
  • Published 16.05.2025 00:00:10
  • Last modified 20.06.2025 14:09:44

A vulnerability classified as critical has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument servic...

8.8

CVE-2025-4730

  • EPSS 0.22%
  • Published 16.05.2025 00:00:07
  • Last modified 20.06.2025 14:09:52

A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. It has been rated as critical. Affected by this issue is some unknown functionality of the file /boafrm/formMapDel of the component HTTP POST Request Handler. The manipula...

6.3

CVE-2025-4729

  • EPSS 2.58%
  • Published 15.05.2025 23:31:06
  • Last modified 20.06.2025 14:10:00

A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formMapDelDevice of the component HTTP POST Request Handle...

6.8

CVE-2024-51228

  • EPSS 63.24%
  • Published 27.11.2024 17:15:12
  • Last modified 29.11.2024 20:15:20

An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121.1002 and TOTOLINK-CX-N300RT V2.1.6-B20170724.1420 and TOTOLINK-CX-N300RT V2.1.8-B20171113.1408 and TOTOLINK-CX-N300RT V2.1.8-B20191010.1107 and TOTOLINK-CX-...

9.8

CVE-2024-34198

Exploit
  • EPSS 0.25%
  • Published 28.08.2024 15:15:16
  • Last modified 03.07.2025 11:58:29

TOTOLINK AC1200 Wireless Router A3002RU V2.1.1-B20230720.1011 is vulnerable to Buffer Overflow. The formWlEncrypt CGI handler in the boa program fails to limit the length of the wlan_ssid field from user input. This allows attackers to craft maliciou...

8.8

CVE-2023-48859

Exploit
  • EPSS 0.06%
  • Published 06.12.2023 15:15:06
  • Last modified 21.11.2024 08:32:33

TOTOLINK A3002RU version 2.0.0-B20190902.1958 has a post-authentication RCE due to incorrect access control, allows attackers to bypass front-end security restrictions and execute arbitrary code.