📦 A800r Firmware

This CVE describes a pre-authentication remote command execution vulnerability in multiple TOTOLINK router models. Attackers can execute arbitrary commands on affected devices without authentication b...

This vulnerability allows unauthenticated attackers to execute arbitrary commands on TOTOLINK A800R routers by exploiting improper input validation in the setNoticeCfg function. Attackers can gain ful...

This CVE describes a critical command injection vulnerability in multiple Totolink router models. Attackers can execute arbitrary system commands by sending specially crafted requests to the setLangua...

This CVE describes a command injection vulnerability in multiple Totolink router models that allows attackers to execute arbitrary commands via the webWlanIdx parameter in the setWebWlanIdx function. ...

This CVE describes a command injection vulnerability in multiple Totolink router models that allows attackers to execute arbitrary commands via the FileName parameter in the setUpgradeFW function. Att...

This CVE describes a command injection vulnerability in multiple Totolink router models that allows attackers to execute arbitrary commands via the setDeviceName function. Attackers can exploit this b...

This CVE describes a command injection vulnerability in multiple Totolink router models that allows attackers to execute arbitrary commands via the host_time parameter in the NTPSyncWithHost function....

This CVE describes a command injection vulnerability in TOTOLink A800R routers that allows attackers to execute arbitrary commands via the QUERY_STRING parameter. Attackers can gain complete control o...

A critical buffer overflow vulnerability in TOTOLINK routers allows remote attackers to execute arbitrary code by manipulating the FileName parameter in the CloudACMunualUpdate function. This affects ...

This CVE describes a buffer overflow vulnerability in TOTOLINK A800R routers through the downloadFile.cgi endpoint's v25 parameter. Attackers can exploit this to execute arbitrary code or crash the de...

This CVE describes a buffer overflow vulnerability in TOTOLINK A800R routers through the downloadFile.cgi endpoint's v14 parameter. Attackers can exploit this to execute arbitrary code or crash the de...

This CVE describes a pre-authentication buffer overflow vulnerability in multiple TOTOLINK router models. Attackers can exploit this by sending specially crafted requests to the setNoticeCfg function ...

This CVE describes a command injection vulnerability in multiple Totolink router models that allows attackers to execute arbitrary commands on affected devices. The vulnerability affects specific firm...