VYPR

X15

by Totolink

CVEs (25)

  • CVE-2025-5736HigJun 6, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been classified as critical. Affected is an unknown function of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is…

  • CVE-2025-5735HigJun 6, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This issue affects some unknown processing of the file /boafrm/formSetLg of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.…

  • CVE-2025-5734HigJun 6, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formWlanRedirect of the component HTTP POST Request Handler. The manipulation of the argument redirect-url leads to buffer…

  • CVE-2025-5503HigJun 3, 2025
    risk 0.57cvss 8.8epss 0.04

    A vulnerability, which was classified as critical, was found in TOTOLINK X15 1.0.0-B20230714.1105. This affects the function formMapReboot of the file /boafrm/formMapReboot. The manipulation of the argument deviceMacAddr leads to stack-based buffer overflow. It is possible to…

  • CVE-2025-5502MedJun 3, 2025
    risk 0.42cvss 6.3epss 0.08

    A vulnerability, which was classified as critical, has been found in TOTOLINK X15 1.0.0-B20230714.1105. Affected by this issue is the function formMapReboot of the file /boafrm/formMapReboot. The manipulation of the argument deviceMacAddr leads to command injection. The attack…

Page 2 of 2