Vulnerabilities (CVE)

Filtered by vendor Totolink Subscribe

Filtered by product A3700r

Total 28 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-36463	1 Totolink	2 A3700r, A3700r Firmware	2024-11-21	N/A	7.8 HIGH
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a stack overflow via the command parameter in the function setTracerouteCfg.
CVE-2022-36462	1 Totolink	2 A3700r, A3700r Firmware	2024-11-21	N/A	7.8 HIGH
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a stack overflow via the lang parameter in the function setLanguageCfg.
CVE-2022-36461	1 Totolink	2 A3700r, A3700r Firmware	2024-11-21	N/A	7.8 HIGH
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg.
CVE-2022-36460	1 Totolink	2 A3700r, A3700r Firmware	2024-11-21	N/A	7.8 HIGH
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the FileName parameter in the function UploadFirmwareFile.
CVE-2022-36459	1 Totolink	2 A3700r, A3700r Firmware	2024-11-21	N/A	7.8 HIGH
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the host_time parameter in the function NTPSyncWithHost.
CVE-2022-36458	1 Totolink	2 A3700r, A3700r Firmware	2024-11-21	N/A	7.8 HIGH
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the command parameter in the function setTracerouteCfg.
CVE-2024-42543	1 Totolink	2 A3700r, A3700r Firmware	2024-08-13	N/A	9.8 CRITICAL
TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the http_host parameter in the loginauth function.
CVE-2024-42545	1 Totolink	2 A3700r, A3700r Firmware	2024-08-13	N/A	9.8 CRITICAL
TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function.