cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-7909,https://securityvulnerability.io/vulnerability/CVE-2024-7909,Stack-Based Buffer Overflow in TOTOLINK EX1200L Product,"A critical vulnerability has been identified in the TOTOLINK EX1200L router, specifically within the setLanguageCfg function located in the cstecgi.cgi file. This vulnerability is classified as a stack-based buffer overflow, allowing an attacker to manipulate the langType argument. If successfully exploited, this could result in remote code execution, putting the system and connected networks at significant risk. Notably, the vulnerability has been publicly disclosed, and users are strongly advised to apply any available patches or mitigations immediately. As the vendor has not responded to notifications about this issue, proactive measures are essential for maintaining network security.",TOTOLINK,Ex1200l Firmware,9.8,CRITICAL,0.003019999945536256,false,false,false,false,,false,false,2024-08-18T18:15:00.000Z,0
CVE-2024-7908,https://securityvulnerability.io/vulnerability/CVE-2024-7908,"CRITICAL Vulnerability Discovered in TOTOLINK's EX1200L Product, Remote Exploitation Possible","A vulnerability has been identified in the TOTOLINK EX1200L network device, specifically in the setDefResponse function located in the cstecgi.cgi file. This issue results from improper handling of user-supplied input for the IpAddress argument, which may lead to a stack-based buffer overflow. An attacker can exploit this flaw remotely, allowing unauthorized control over the affected device. The vulnerability poses significant risks as the exploit has been publicly disclosed, and despite notifications, the vendor has not provided any responses concerning the disclosed issues.",TOTOLINK,Ex1200l Firmware,9.8,CRITICAL,0.0025100000202655792,false,false,false,false,,false,false,2024-08-18T17:15:00.000Z,0
CVE-2023-51034,https://securityvulnerability.io/vulnerability/CVE-2023-51034,,TOTOlink EX1200L V9.3.5u.6146_B20201023 is vulnerable to arbitrary command execution via the cstecgi.cgi UploadFirmwareFile interface.,Totolink,Ex1200l Firmware,9.8,CRITICAL,0.026729999110102654,false,false,false,false,,false,false,2023-12-22T00:00:00.000Z,0