totolink a3100r firmware vulnerabilities and exploits

(subscribe to this query)

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a command injection vulnerability via the magicid parameter in the function uci_cloudupdate_config.

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the startTime and endTime parameters in the function setParentalRules. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted PO...

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a hard coded password for the telnet service stored in the component /web_cste/cgi-bin/product.ini.

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a hard coded password for root stored in the component /etc/shadow.sample.

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

An access control issue in TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 allows malicious users to obtain sensitive information via a crafted web request.

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the comment parameter in the function setIpQosRules. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted POST request.

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the comment parameter in the function setPortForwardRules. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted POST request.

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the url parameter in the function setUrlFilterRules. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted POST request.

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 were discovered to contain a stack overflow via the macAddress parameter in the function setMacQos. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted POST request.

Totolink A3100r Firmware 4.1.2cu.5050 B20200504 Totolink A3100r Firmware 4.1.2cu.5247 B20211129

A Command Injection vulnerability exits in TOTOLINK A3100R <=V4.1.2cu.5050_B20200504 in adm/ntm.asp via the hosTime parameters.

Totolink A3100r Firmware

1 2 3 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook