CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-51390

TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a command injection vulnerability via the pin parameter in the setWiFiWpsConfig function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.0%

CVSS Severity

CVSS v3 Score 9.8

References

http://totolink.com
https://github.com/Luanruy/qianxin/blob/main/CVE-2025-51390.md
https://github.com/Luanruy/qianxin/blob/main/overflow-0x41ca08.md
https://github.com/Luanruy/qianxin/blob/main/CVE-2025-51390.md

Products affected by CVE-2025-51390

Totolink » N600r » Version: N/A

cpe:2.3:h:totolink:n600r:-
Totolink » N600r Firmware » Version: 4.3.0cu.7647_b20210106

cpe:2.3:o:totolink:n600r_firmware:4.3.0cu.7647_b20210106

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-51390

Products

Pricing

Contact Us