No analysis available yet.
No remediation available yet.
Tracking
Sign in to view the affected projects.
No advisories yet.
Thu, 09 Jul 2026 19:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Totolink x5000r
|
|
| Vendors & Products |
Totolink x5000r
|
Thu, 09 Jul 2026 18:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability was detected in TOTOLINK X5000R 9.1.0cu.2415_B20250515/9.1.0cu.2350_B20230313. Affected by this vulnerability is the function exportOvpn of the file /web/cgi-bin/cstecgi.cgi of the component OpenVPN Export. The manipulation results in path traversal. The attack may be launched remotely. | |
| Title | TOTOLINK X5000R OpenVPN Export cstecgi.cgi exportOvpn path traversal | |
| First Time appeared |
Totolink
Totolink x5000r Firmware |
|
| Weaknesses | CWE-22 | |
| CPEs | cpe:2.3:o:totolink:x5000r_firmware:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Totolink
Totolink x5000r Firmware |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-09T17:45:10.075Z
Reserved: 2026-07-09T06:54:25.124Z
Link: CVE-2026-15204
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-09T19:30:17Z
-
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')