VYPR

N600r Firmware

by Totolink

Source repositories

CVEs (3)

  • CVE-2025-9935HigSep 4, 2025
    risk 0.48cvss 7.3epss 0.03

    A vulnerability was determined in TOTOLINK N600R 4.3.0cu.7866_B20220506. This vulnerability affects the function sub_4159F8 of the file /web_cste/cgi-bin/cstecgi.cgi. Executing manipulation can lead to command injection. The attack can be executed remotely. The exploit has been…

  • CVE-2025-11444Oct 8, 2025
    risk 0.00cvss epss 0.01

    A security vulnerability has been detected in TOTOLINK N600R up to 4.3.0cu.7866_B20220506. This impacts the function setWiFiBasicConfig of the file /cgi-bin/cstecgi.cgi of the component HTTP Request Handler. Such manipulation of the argument wepkey leads to buffer overflow. It…

  • CVE-2025-57623Sep 25, 2025
    risk 0.00cvss epss 0.00

    A NULL pointer dereference in TOTOLINK N600R firmware v4.3.0cu.7866_B2022506 allows attackers to cause a Denial of Service.