Totolink - A6000r Firmware CVE - OpenCVE

Filtered by vendor Totolink Subscriptions

Filtered by product A6000r Firmware Subscriptions

Total 8 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-41317	1 Totolink	1 A6000r Firmware	2024-08-02	8 High
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pbc_wps function.
CVE-2024-41318	1 Totolink	1 A6000r Firmware	2024-08-02	9.8 Critical
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_wps_gen_pincode function.
CVE-2024-41316	1 Totolink	1 A6000r Firmware	2024-08-02	9.8 Critical
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_cancel_wps function.
CVE-2024-41320	1 Totolink	1 A6000r Firmware	2024-08-02	8.8 High
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the get_apcli_conn_info function.
CVE-2024-41314	1 Totolink	1 A6000r Firmware	2024-08-02	6.8 Medium
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the iface parameter in the vif_disable function.
CVE-2024-41319	1 Totolink	2 A6000r, A6000r Firmware	2024-08-02	8.8 High
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the cmd parameter in the webcmd function.
CVE-2024-41315	1 Totolink	1 A6000r Firmware	2024-08-02	6.8 Medium
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pin_wps function.
CVE-2024-37626	1 Totolink	1 A6000r Firmware	2024-08-02	8.8 High
A command injection issue in TOTOLINK A6000R V1.0.1-B20201211.2000 firmware allows a remote attacker to execute arbitrary code via the iface parameter in the vif_enable function.

Page 1 of 1.