Totolink

N350rt Firmware

21 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-51630

Exploit
  • EPSS 0.3%
  • Published 17.07.2025 00:00:00
  • Last modified 18.07.2025 17:25:28

TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a buffer overflow via the ePort parameter in the function setIpPortFilterRules.

9.8

CVE-2024-42966

Exploit
  • EPSS 0.14%
  • Published 15.08.2024 17:15:20
  • Last modified 24.10.2024 20:35:08

Incorrect access control in TOTOLINK N350RT V9.3.5u.6139_B20201216 allows attackers to obtain the apmib configuration file, which contains the username and the password, via a crafted request to /cgi-bin/ExportSettings.sh.

9.8

CVE-2024-7462

Exploit
  • EPSS 0.22%
  • Published 05.08.2024 00:15:58
  • Last modified 15.08.2024 13:16:26

A vulnerability classified as critical has been found in TOTOLINK N350RT 9.3.5u.6139_B20201216. This affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid leads to buffer overflow. It is possible to...

8.8

CVE-2024-7333

Exploit
  • EPSS 0.2%
  • Published 01.08.2024 02:15:02
  • Last modified 09.08.2024 13:56:43

A vulnerability was found in TOTOLINK N350RT 9.3.5u.6139_B20201216. It has been declared as critical. This vulnerability affects the function setParentalRules of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument week/sTime/eTime leads t...

5.3

CVE-2024-0943

  • EPSS 0.08%
  • Published 26.01.2024 20:15:54
  • Last modified 21.11.2024 08:47:49

A vulnerability was found in Totolink N350RT 9.3.5u.6255. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /cgi-bin/cstecgi.cgi. The manipulation leads to session expiration. The attack can b...

9.1

CVE-2024-0570

  • EPSS 0.2%
  • Published 16.01.2024 14:15:48
  • Last modified 21.11.2024 08:46:54

A vulnerability classified as critical was found in Totolink N350RT 9.3.5u.6265. This vulnerability affects unknown code of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation leads to improper access controls. The attack...

9.8

CVE-2023-7219

Exploit
  • EPSS 0.09%
  • Published 09.01.2024 06:15:45
  • Last modified 21.11.2024 08:45:32

A vulnerability has been found in Totolink N350RT 9.3.5u.6139_B202012 and classified as critical. Affected by this vulnerability is the function loginAuth of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument http_host leads to stack-bas...

7.2

CVE-2023-7218

Exploit
  • EPSS 0.2%
  • Published 08.01.2024 21:15:10
  • Last modified 21.11.2024 08:45:32

A vulnerability, which was classified as critical, was found in Totolink N350RT 9.3.5u.6139_B202012. Affected is the function loginAuth of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument password leads to stack-based buffer overflow. ...

8.8

CVE-2023-7214

Exploit
  • EPSS 0.08%
  • Published 07.01.2024 20:15:47
  • Last modified 21.11.2024 08:45:31

A vulnerability, which was classified as critical, has been found in Totolink N350RT 9.3.5u.6139_B20201216. Affected by this issue is the function main of the file /cgi-bin/cstecgi.cgi?action=login of the component HTTP POST Request Handler. The mani...

8.8

CVE-2023-7213

Exploit
  • EPSS 0.08%
  • Published 07.01.2024 19:15:08
  • Last modified 21.11.2024 08:45:31

A vulnerability classified as critical was found in Totolink N350RT 9.3.5u.6139_B20201216. Affected by this vulnerability is the function main of the file /cgi-bin/cstecgi.cgi?action=login&flag=1 of the component HTTP POST Request Handler. The manipu...