CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-61044

TOTOLINK X18 V9.1.0cu.2053_B20230309 was discovered to contain a command injection vulnerability via the agentName parameter in the setEasyMeshAgentCfg function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.7%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/ilovekeer/IOT/blob/main/TOTOLINK/X18/setEasyMeshAgentCfg/2.md

Products affected by CVE-2025-61044

Totolink » X18 » Version: N/A

cpe:2.3:h:totolink:x18:-
Totolink » X18 Firmware » Version: 9.1.0cu.2053_b20230309

cpe:2.3:o:totolink:x18_firmware:9.1.0cu.2053_b20230309

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-61044

Products

Pricing

Contact Us