Vulnerability Details CVE-2025-25605
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the apcli_wps_gen_pincode function in mtkwifi.lua.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.132
EPSS Ranking 93.8%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2025-25605
-
cpe:2.3:h:totolink:x5000r:-
-
cpe:2.3:o:totolink:x5000r_firmware:9.1.0u.6369_b20230113