VYPR
Unrated severityNVD Advisory· Published Apr 23, 2025· Updated Apr 24, 2025

CVE-2025-28017

CVE-2025-28017

Description

TOTOLINK A800R V4.1.2cu.5032_B20200408 is vulnerable to Command Injection in downloadFile.cgi via the QUERY_STRING parameter.

Affected products

2
  • Totolink/A8000RUcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = V4.1.2cu.5032_B20200408

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.