CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29397
https://notcve.org/view.php?id=CVE-2022-29397
10 May 2022 — TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the comment parameter in the function FUN_004196c8. Se ha detectado que TOTOLINK N600R versión V4.3.0cu.7647_B20210106, contiene un desbordamiento de pila por medio del parámetro comment en la función FUN_004196c8 • https://github.com/d1tto/IoT-vuln/tree/main/Totolink/4.setMacFilterRules • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29395
https://notcve.org/view.php?id=CVE-2022-29395
10 May 2022 — TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the apcliKey parameter in the function FUN_0041bac4. Se ha detectado que TOTOLINK N600R versión V4.3.0cu.7647_B20210106, contiene un desbordamiento de pila por medio del parámetro apcliKey en la función FUN_0041bac4 • https://github.com/d1tto/IoT-vuln/tree/main/Totolink/6.setWiFiRepeaterConfig • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29396
https://notcve.org/view.php?id=CVE-2022-29396
10 May 2022 — TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the comment parameter in the function FUN_00418f10. Se ha detectado que TOTOLINK N600R versión V4.3.0cu.7647_B20210106, contiene un desbordamiento de pila por medio del parámetro comment en la función FUN_00418f10 • https://github.com/d1tto/IoT-vuln/tree/main/Totolink/8.setIpPortFilterRules • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29394
https://notcve.org/view.php?id=CVE-2022-29394
10 May 2022 — TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the macAddress parameter in the function FUN_0041b448. Se ha descubierto que TOTOLINK N600R versión V4.3.0cu.7647_B20210106, contiene un desbordamiento de pila por medio del parámetro macAddress en la función FUN_0041b448 • https://github.com/d1tto/IoT-vuln/tree/main/Totolink/1.setWiFiAclAddConfig • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29393
https://notcve.org/view.php?id=CVE-2022-29393
10 May 2022 — TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the comment parameter in the function FUN_004192cc. Se ha detectado que TOTOLINK N600R versión V4.3.0cu.7647_B20210106, contiene un desbordamiento de pila por medio del parámetro comment en la función FUN_004192cc • https://github.com/d1tto/IoT-vuln/tree/main/Totolink/3.setIpQosRules • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29392
https://notcve.org/view.php?id=CVE-2022-29392
10 May 2022 — TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the comment parameter in the function FUN_00418c24. Se ha detectado que TOTOLINK N600R versión V4.3.0cu.7647_B20210106, contiene un desbordamiento de pila por el parámetro comment en la función FUN_00418c24 • https://github.com/d1tto/IoT-vuln/tree/main/Totolink/2.setPortForwardRules • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2022-29391
https://notcve.org/view.php?id=CVE-2022-29391
10 May 2022 — TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the comment parameter in the function FUN_004200c8. Se ha detectado que TOTOLINK N600R versión V4.3.0cu.7647_B20210106, contiene un desbordamiento de pila por medio del parámetro comment en la función FUN_004200c8 • https://github.com/d1tto/IoT-vuln/tree/main/Totolink/5.setStaticDhcpConfig • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 3%CPEs: 2EXPL: 1CVE-2022-28912
https://notcve.org/view.php?id=CVE-2022-28912
10 May 2022 — TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/setUpgradeFW. Se ha detectado que TOTOLink N600R versión V5.3c.7159_B20190425, contiene una vulnerabilidad de inyección de comandos por medio del parámetro filename en /setting/setUpgradeFW • https://github.com/EPhaha/IOT_vuln/tree/main/TOTOLink/N600R/8 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 3%CPEs: 2EXPL: 1CVE-2022-28913
https://notcve.org/view.php?id=CVE-2022-28913
10 May 2022 — TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/setUploadSetting. Se ha detectado que TOTOLink N600R versión V5.3c.7159_B20190425, contiene una vulnerabilidad de inyección de comandos por medio del parámetro filename en /setting/setUploadSetting • https://github.com/EPhaha/IOT_vuln/tree/main/TOTOLink/N600R/10 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 3%CPEs: 2EXPL: 1CVE-2022-28910
https://notcve.org/view.php?id=CVE-2022-28910
10 May 2022 — TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the devicename parameter in /setting/setDeviceName. Se ha detectado que TOTOLink N600R versión V5.3c.7159_B20190425, contiene una vulnerabilidad de inyección de comandos por medio del parámetro devicename en /setting/setDeviceName • https://github.com/EPhaha/IOT_vuln/tree/main/TOTOLink/N600R/9 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •