Shodan
Vulnerabilities
Vulnerable Software
Totolink:  >> N600r Firmware  Security Vulnerabilities
CVE-2022-28907
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the hosttime function in /setting/NTPSyncWithHost.
CVSS Score
9.8
EPSS Score
0.116
Published
2022-05-10
CVE-2022-28908
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the ipdoamin parameter in /setting/setDiagnosisCfg.
CVSS Score
9.8
EPSS Score
0.116
Published
2022-05-10
CVE-2022-28909
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the webwlanidx parameter in /setting/setWebWlanIdx.
CVSS Score
9.8
EPSS Score
0.103
Published
2022-05-10
CVE-2022-27411
TOTOLINK N600R v5.3c.5507_B20171031 was discovered to contain a command injection vulnerability via the QUERY_STRING parameter in the "Main" function.
CVSS Score
9.8
EPSS Score
0.048
Published
2022-05-05
CVE-2022-26186
TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a command injection vulnerability via the exportOvpn interface at cstecgi.cgi.
CVSS Score
9.8
EPSS Score
0.049
Published
2022-03-22
CVE-2022-26187
TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a command injection vulnerability via the pingCheck function.
CVSS Score
9.8
EPSS Score
0.15
Published
2022-03-22
CVE-2022-26188
TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a command injection vulnerability via /setting/NTPSyncWithHost.
CVSS Score
9.8
EPSS Score
0.149
Published
2022-03-22
CVE-2022-26189
TOTOLINK N600R V4.3.0cu.7570_B20200620 was discovered to contain a command injection vulnerability via the langType parameter in the login interface.
CVSS Score
9.8
EPSS Score
0.149
Published
2022-03-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved