Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2025-28137
The TOTOLINK A810R V4.1.2cu.5182_B20201026 were found to contain a pre-auth remote command execution vulnerability in the setNoticeCfg function through the NoticeUrl parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.059
EPSS Ranking
90.1%
CVSS Severity
CVSS v3 Score
9.8
References
https://github.com/Zerone0x00/CVE/blob/main/TOTOLINK/CVE-2025-28137.md
https://sudsy-eyeliner-a59.notion.site/RCE1-1ab72b8cd95f80d09eded269810f3756?pvs=4
https://sudsy-eyeliner-a59.notion.site/RCE1-1ab72b8cd95f80d09eded269810f3756
Products affected by CVE-2025-28137
Totolink
»
A810r
»
Version:
N/A
cpe:2.3:h:totolink:a810r:-
Totolink
»
A810r Firmware
»
Version:
4.1.2cu.5182_b20201026
cpe:2.3:o:totolink:a810r_firmware:4.1.2cu.5182_b20201026
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved