CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46420
https://notcve.org/view.php?id=CVE-2023-46420
25 Oct 2023 — TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_41590C function. Se descubrió que TOTOLINK X6000R v9.4.0cu.652_B20230116 contiene una vulnerabilidad de ejecución remota de comandos (RCE) a través de la función sub_41590C. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X6000R/5/1.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46421
https://notcve.org/view.php?id=CVE-2023-46421
25 Oct 2023 — TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_411D00 function. Se descubrió que TOTOLINK X6000R v9.4.0cu.652_B20230116 contiene una vulnerabilidad de ejecución remota de comandos (RCE) a través de la función sub_411D00. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X6000R/8/1.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46422
https://notcve.org/view.php?id=CVE-2023-46422
25 Oct 2023 — TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_411994 function. Se descubrió que TOTOLINK X6000R v9.4.0cu.652_B20230116 contiene una vulnerabilidad de ejecución remota de comandos (RCE) a través de la función sub_411994. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X6000R/9/1.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46423
https://notcve.org/view.php?id=CVE-2023-46423
25 Oct 2023 — TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_417094 function. Se descubrió que TOTOLINK X6000R v9.4.0cu.652_B20230116 contiene una vulnerabilidad de ejecución remota de comandos (RCE) a través de la función sub_417094. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X6000R/4/1.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46424
https://notcve.org/view.php?id=CVE-2023-46424
25 Oct 2023 — TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_422BD4 function. Se descubrió que TOTOLINK X6000R v9.4.0cu.652_B20230116 contiene una vulnerabilidad de ejecución remota de comandos (RCE) a través de la función sub_422BD4. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X6000R/3/1.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46540
https://notcve.org/view.php?id=CVE-2023-46540
25 Oct 2023 — TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formNtp. Se descubrió que TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web contenía un desbordamiento de pila a través de la función formNtp. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X2000R/11/1.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46541
https://notcve.org/view.php?id=CVE-2023-46541
25 Oct 2023 — TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formIpv6Setup. Se descubrió que TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web contenía un desbordamiento de pila a través de la función formIpv6Setup. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X2000R/10/1.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46542
https://notcve.org/view.php?id=CVE-2023-46542
25 Oct 2023 — TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMeshUploadConfig. Se descubrió que TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web contenía un desbordamiento de pila a través de la función formMeshUploadConfig. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X2000R/13/1.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46543
https://notcve.org/view.php?id=CVE-2023-46543
25 Oct 2023 — TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formWlSiteSurvey. Se descubrió que TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web contenía un desbordamiento de pila a través de la función formWlSiteSurvey. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X2000R/16/1.md • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-46544
https://notcve.org/view.php?id=CVE-2023-46544
25 Oct 2023 — TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formWirelessTbl. Se descubrió que TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web contenía un desbordamiento de pila a través de la función formWirelessTbl. • https://github.com/XYIYM/Digging/blob/main/TOTOLINK/X2000R/14/1.md • CWE-787: Out-of-bounds Write •