Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
totolink lr350 firmware 9.3.5u.6369 b20220309 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-37148
TOTOLINK LR350 V9.3.5u.6369_B20220309 exists to contain a command injection vulnerability via the ussd parameter in the setUssd function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
9.8
CVSSv3
CVE-2023-37145
TOTOLINK LR350 V9.3.5u.6369_B20220309 exists to contain a command injection vulnerability via the hostname parameter in the setOpModeCfg function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
9.8
CVSSv3
CVE-2023-37146
TOTOLINK LR350 V9.3.5u.6369_B20220309 exists to contain a command injection vulnerability via the FileName parameter in the UploadFirmwareFile function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
9.8
CVSSv3
CVE-2023-37149
TOTOLINK LR350 V9.3.5u.6369_B20220309 exists to contain a command injection vulnerability via the FileName parameter in the setUploadSetting function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
9.8
CVSSv3
CVE-2022-44249
TOTOLINK NR1800X V9.1.0u.6279_B20210910 contains a command injection via the FileName parameter in the UploadFirmwareFile function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
9.8
CVSSv3
CVE-2022-44255
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a pre-authentication buffer overflow in the main function via long post data.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
9.8
CVSSv3
CVE-2022-44251
TOTOLINK NR1800X V9.1.0u.6279_B20210910 contains a command injection via the ussd parameter in the setUssd function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
9.8
CVSSv3
CVE-2022-44250
TOTOLINK NR1800X V9.1.0u.6279_B20210910 contains a command injection via the hostName parameter in the setOpModeCfg function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
9.8
CVSSv3
CVE-2022-44252
TOTOLINK NR1800X V9.1.0u.6279_B20210910 contains a command injection via the FileName parameter in the setUploadSetting function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
8.8
CVSSv3
CVE-2022-44253
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter ip in the setDiagnosisCfg function.
Totolink Lr350 Firmware 9.3.5u.6369 B20220309
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »