Vulnerability Details CVE-2025-29209
TOTOLINK X18 v9.1.0cu.2024_B20220329 has an unauthorized arbitrary command execution in the enable parameter' of the sub_41105C function of cstecgi .cgi.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.7%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2025-29209
-
cpe:2.3:h:totolink:x18:-
-
cpe:2.3:o:totolink:x18_firmware:9.1.0cu.2024_b20220329