VYPR

EX1800T

by Totolink

CVEs (28)

  • CVE-2024-34257CriMay 8, 2024
    risk 0.64cvss 9.8epss 0.04

    TOTOLINK EX1800T V9.1.0cu.2112_B20220316 has a vulnerability in the apcliEncrypType parameter that allows unauthorized execution of arbitrary commands, allowing an attacker to obtain device administrator privileges.

  • CVE-2023-52026CriJan 12, 2024
    risk 0.64cvss 9.8epss 0.02

    TOTOlink EX1800T V9.1.0cu.2112_B20220316 was discovered to contain a remote command execution (RCE) vulnerability via the telnet_enabled parameter of the setTelnetCfg interface

  • CVE-2023-51022CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langFlag’ parameter of the setLanguageCfg interface of the cstecgi .cgi.

  • CVE-2023-51021CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘merge’ parameter of the setRptWizardCfg interface of the cstecgi .cgi.

  • CVE-2023-51020CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘langType’ parameter of the setLanguageCfg interface of the cstecgi .cgi.

  • CVE-2023-51019CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘key5g’ parameter of the setWiFiExtenderConfig interface of the cstecgi .cgi.

  • CVE-2023-51018CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘opmode’ parameter of the setWiFiApConfig interface of the cstecgi .cgi.

  • CVE-2023-51017CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanIp parameter’ of the setLanConfig interface of the cstecgi .cgi.

  • CVE-2023-51016CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the setRebootScheCfg interface of the cstecgi .cgi.

  • CVE-2023-51015CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOLINX EX1800T v9.1.0cu.2112_B20220316 is vulnerable to arbitrary command execution in the ‘enable parameter’ of the setDmzCfg interface of the cstecgi .cgi

  • CVE-2023-51014CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOLINK EX1800T V9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanSecDns parameter’ of the setLanConfig interface of the cstecgi .cgi

  • CVE-2023-51013CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanNetmask parameter’ of the setLanConfig interface of the cstecgi .cgi.

  • CVE-2023-51012CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanGateway parameter’ of the setLanConfig interface of the cstecgi .cgi.

  • CVE-2023-51011CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanPriDns parameter’ of the setLanConfig interface of the cstecgi .cgi

  • CVE-2023-51028CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOLINK EX1800T 9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the apcliChannel parameter of the setWiFiExtenderConfig interface of the cstecgi.cgi.

  • CVE-2023-51027CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T V9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘apcliAuthMode’ parameter of the setWiFiExtenderConfig interface of the cstecgi .cgi.

  • CVE-2023-51026CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T V9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘hour’ parameter of the setRebootScheCfg interface of the cstecgi .cgi.

  • CVE-2023-51025CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T V9.1.0cu.2112_B20220316 is vulnerable to an unauthorized arbitrary command execution in the ‘admuser’ parameter of the setPasswordCfg interface of the cstecgi .cgi.

  • CVE-2023-51024CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the ‘tz’ parameter of the setNtpCfg interface of the cstecgi .cgi.

  • CVE-2023-51023CriDec 22, 2023
    risk 0.64cvss 9.8epss 0.01

    TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to arbitrary command execution in the ‘host_time’ parameter of the NTPSyncWithHost interface of the cstecgi .cgi.

Page 1 of 2