Show filters
612 Total Results
Displaying 561-570 of 612
Sort by:
Attacker Value
Unknown
CVE-2022-25136
Disclosure Date: February 19, 2022 (last updated February 23, 2025)
A command injection vulnerability in the function meshSlaveUpdate of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.
0
Attacker Value
Unknown
CVE-2022-25135
Disclosure Date: February 19, 2022 (last updated February 23, 2025)
A command injection vulnerability in the function recv_mesh_info_sync of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.
0
Attacker Value
Unknown
CVE-2022-25134
Disclosure Date: February 19, 2022 (last updated February 23, 2025)
A command injection vulnerability in the function setUpgradeFW of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.
0
Attacker Value
Unknown
CVE-2022-25133
Disclosure Date: February 19, 2022 (last updated February 23, 2025)
A command injection vulnerability in the function isAssocPriDevice of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.
0
Attacker Value
Unknown
CVE-2022-25132
Disclosure Date: February 19, 2022 (last updated February 23, 2025)
A command injection vulnerability in the function meshSlaveDlfw of TOTOLINK Technology router T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 allows attackers to execute arbitrary commands via a crafted MQTT packet.
0
Attacker Value
Unknown
CVE-2022-25131
Disclosure Date: February 19, 2022 (last updated February 23, 2025)
A command injection vulnerability in the function recvSlaveCloudCheckStatus of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.
0
Attacker Value
Unknown
CVE-2022-25130
Disclosure Date: February 19, 2022 (last updated February 23, 2025)
A command injection vulnerability in the function updateWifiInfo of TOTOLINK Technology routers T6 V3_Firmware T6_V3_V4.1.5cu.748_B20211015 and T10 V2_Firmware V4.1.8cu.5207_B20210320 allows attackers to execute arbitrary commands via a crafted MQTT packet.
0
Attacker Value
Unknown
CVE-2021-45742
Disclosure Date: February 04, 2022 (last updated February 23, 2025)
TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERY_STRING parameter.
0
Attacker Value
Unknown
CVE-2021-45741
Disclosure Date: February 04, 2022 (last updated October 07, 2023)
TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to contain a stack overflow in the function setIpv6Cfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the relay6to4 parameters.
0
Attacker Value
Unknown
CVE-2021-45740
Disclosure Date: February 04, 2022 (last updated October 07, 2023)
TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a stack overflow in the setWiFiWpsStart function. This vulnerability allows attackers to cause a Denial of Service (DoS) via the pin parameter.
0
