CVE-2025-45865
- EPSS 0.11%
- Published 13.05.2025 00:00:00
- Last modified 15.05.2025 18:37:31
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the dnsaddr parameter in the formDhcpv6s interface.
CVE-2025-45861
- EPSS 0.11%
- Published 13.05.2025 00:00:00
- Last modified 15.05.2025 18:37:49
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the routername parameter in the formDnsv6 interface.
CVE-2025-25579
- EPSS 8.07%
- Published 28.03.2025 00:00:00
- Last modified 07.04.2025 14:23:36
TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Command Injection in /bin/boa via bandstr.
- EPSS 0.04%
- Published 28.02.2025 19:15:37
- Last modified 02.10.2025 01:40:13
TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the pppoe_dns1 parameter in the formIpv6Setup interface of /bin/boa.
- EPSS 0.04%
- Published 28.02.2025 19:15:37
- Last modified 03.04.2025 15:37:48
TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the static_gw parameter in the formIpv6Setup interface of /bin/boa.
- EPSS 0.04%
- Published 28.02.2025 19:15:36
- Last modified 03.04.2025 15:37:42
TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the static_ipv6 parameter in the formIpv6Setup interface of /bin/boa
CVE-2024-54907
- EPSS 0.72%
- Published 26.12.2024 19:15:08
- Last modified 09.04.2025 18:36:22
TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Remote Code Execution in /bin/boa via formWsc.