Totolink

N600r Firmware

33 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2022-28912

Exploit
  • EPSS 11.61%
  • Published 10.05.2022 14:15:09
  • Last modified 21.11.2024 06:58:10

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/setUpgradeFW.

10

CVE-2022-28911

Exploit
  • EPSS 11.61%
  • Published 10.05.2022 14:15:09
  • Last modified 21.11.2024 06:58:10

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/CloudACMunualUpdate.

10

CVE-2022-28910

Exploit
  • EPSS 11.61%
  • Published 10.05.2022 14:15:09
  • Last modified 21.11.2024 06:58:10

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the devicename parameter in /setting/setDeviceName.

10

CVE-2022-28909

Exploit
  • EPSS 10.3%
  • Published 10.05.2022 14:15:08
  • Last modified 21.11.2024 06:58:10

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the webwlanidx parameter in /setting/setWebWlanIdx.

10

CVE-2022-28908

Exploit
  • EPSS 11.61%
  • Published 10.05.2022 14:15:08
  • Last modified 21.11.2024 06:58:10

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the ipdoamin parameter in /setting/setDiagnosisCfg.

10

CVE-2022-28907

Exploit
  • EPSS 11.61%
  • Published 10.05.2022 14:15:08
  • Last modified 21.11.2024 06:58:10

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the hosttime function in /setting/NTPSyncWithHost.

10

CVE-2022-28906

Exploit
  • EPSS 11.61%
  • Published 10.05.2022 14:15:08
  • Last modified 21.11.2024 06:58:09

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the langtype parameter in /setting/setLanguageCfg.

10

CVE-2022-28905

Exploit
  • EPSS 11.61%
  • Published 10.05.2022 14:15:08
  • Last modified 21.11.2024 06:58:09

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the devicemac parameter in /setting/setDeviceName.

10

CVE-2022-27411

Exploit
  • EPSS 4.79%
  • Published 05.05.2022 19:15:07
  • Last modified 21.11.2024 06:55:41

TOTOLINK N600R v5.3c.5507_B20171031 was discovered to contain a command injection vulnerability via the QUERY_STRING parameter in the "Main" function.

9.8

CVE-2022-26186

Exploit
  • EPSS 6.1%
  • Published 22.03.2022 21:15:07
  • Last modified 21.11.2024 06:53:34

TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a command injection vulnerability via the exportOvpn interface at cstecgi.cgi.