cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-22529,https://securityvulnerability.io/vulnerability/CVE-2024-22529,Command Injection Vulnerability in TOTOLINK X2000R_V2,"The TOTOLINK X2000R_V2 is affected by a command injection vulnerability found in its firmware, notably within the sub_449040 function of the /bin/boa component. This flaw allows an attacker to send crafted input that can execute arbitrary commands on the device, leading to potential unauthorized access or system manipulation. Users are encouraged to apply necessary mitigations to secure their devices against exploitation.",Totolink,X2000r Firmware,9.8,CRITICAL,0.5421199798583984,false,,false,false,false,,,false,false,,2024-01-25T00:00:00.000Z,0
CVE-2024-0579,https://securityvulnerability.io/vulnerability/CVE-2024-0579,Totolink X2000R formMapDelDevice command injection,A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452. Affected by this vulnerability is the function formMapDelDevice of the file /boafrm/formMapDelDevice. The manipulation of the argument macstr leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250795. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.,Totolink,X2000r,6.3,MEDIUM,0.0029299999587237835,false,,false,false,true,2024-01-16T16:31:03.000Z,true,false,false,,2024-01-16T16:31:03.805Z,0
CVE-2023-7222,https://securityvulnerability.io/vulnerability/CVE-2023-7222,Totolink X2000R HTTP POST Request boa formTmultiAP buffer overflow,"A serious buffer overflow vulnerability has been identified in the Totolink X2000R router, specifically within the formTmultiAP function of the HTTP POST Request Handler located in the /bin/boa file. This vulnerability arises from improper handling of the 'submit-url' argument, allowing an attacker to exploit the flaw remotely. Public disclosure of this exploit heightens the urgency for users to address this security issue, especially since the vendor has not provided any response upon initial contact regarding this vulnerability.",Totolink,X2000R,9.8,CRITICAL,0.0010100000072270632,false,,false,false,true,2024-01-09T16:15:00.000Z,true,false,false,,2024-01-09T16:15:00.000Z,0
CVE-2023-7208,https://securityvulnerability.io/vulnerability/CVE-2023-7208,Totolink X2000R_V2 boa formTmultiAP buffer overflow,"A significant buffer overflow vulnerability exists in the Totolink X2000R_V2 2.0.0-B20230727.10434, specifically within the formTmultiAP function located in the /bin/boa file. This vulnerability can be exploited to manipulate memory allocation, potentially leading to execution of arbitrary code. Despite early notifications to the vendor regarding this issue, there has been no response or mitigation effort reported, leaving users at risk. Awareness and prompt action are essential for those utilizing affected devices to safeguard their networks.",Totolink,X2000r V2,8,HIGH,0.005859999917447567,false,,false,false,false,,,false,false,,2024-01-07T07:15:00.000Z,0
CVE-2023-46546,https://securityvulnerability.io/vulnerability/CVE-2023-46546,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R router has been found to possess a stack overflow vulnerability within its formStats function. This flaw can potentially allow an attacker to exploit the device, affecting its performance and compromising the security of network traffic. Users are advised to review their configurations and keep an eye on any suspicious activities that may arise due to this vulnerability.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T18:17:00.000Z,0
CVE-2023-46545,https://securityvulnerability.io/vulnerability/CVE-2023-46545,Stack Overflow Vulnerability in TOTOLINK X2000R Router,The TOTOLINK X2000R router firmware version 1.0.0-B20230221.0948 is vulnerable to a stack overflow attack through the formWsc function. This vulnerability can potentially allow an attacker to execute arbitrary code or disrupt normal device operations. It is essential for users to update their device firmware and apply necessary security measures to mitigate risks associated with this vulnerability.,Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46547,https://securityvulnerability.io/vulnerability/CVE-2023-46547,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R Router is susceptible to a stack overflow vulnerability caused by improper handling in the formSysLog function. This flaw allows attackers to manipulate the stack memory, potentially leading to arbitrary code execution and unauthorized access to sensitive information. Users are advised to review their firmware versions and apply necessary security patches to mitigate potential risks. For more detailed information, visit the official TOTOLINK website or consult community resources.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46548,https://securityvulnerability.io/vulnerability/CVE-2023-46548,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"A stack overflow vulnerability has been identified in the TOTOLINK X2000R router, specifically within the function formWlanRedirect. This flaw allows for potential exploitation by attackers, which could compromise the integrity of the device. The affected version is v1.0.0-B20230221.0948.web. Users are advised to take precautionary measures and apply necessary updates as they become available. Further details and mitigation strategies can be found through the official TOTOLINK documentation and community resources.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46549,https://securityvulnerability.io/vulnerability/CVE-2023-46549,Stack Overflow Vulnerability in TOTOLINK X2000R by TOTOLINK,"A stack overflow vulnerability has been identified in the TOTOLINK X2000R router firmware v1.0.0-B20230221.0948. This flaw occurs within the formSetLg function, potentially allowing an attacker to manipulate stack memory. If exploited, this vulnerability could facilitate unauthorized access or control over the affected device, posing significant security risks to users. It is crucial for users of this device to apply any available updates and assess their security measures to mitigate potential threats.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46550,https://securityvulnerability.io/vulnerability/CVE-2023-46550,Stack Overflow Vulnerability in Totolink X2000R Router,"The TOTOLINK X2000R router, in its version v1.0.0-B20230221.0948.web, has been identified to have a stack overflow vulnerability within the formMapDelDevice function. This flaw could potentially allow unauthorized access or execution of arbitrary code, posing a risk to network security. Users are encouraged to regularly update their router firmware to protect against such vulnerabilities.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46551,https://securityvulnerability.io/vulnerability/CVE-2023-46551,Stack Overflow Vulnerability in TOTOLINK X2000R Router by TOTOLINK,"A stack overflow vulnerability has been identified in the TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web, specifically within the function formReflashClientTbl. This flaw allows attackers to exploit the router's functionalities leading to potential unauthorized access or denial of service. Users of this model should apply necessary patches or updates to mitigate the risk associated with this vulnerability.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46552,https://securityvulnerability.io/vulnerability/CVE-2023-46552,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R router version Gh v1.0.0-B20230221.0948.web has been identified to have a stack overflow vulnerability occurring in the formMultiAP function. This flaw could allow remote attackers to exploit the stack overflow, potentially leading to unauthorized access or disruption of services. Users are advised to assess their exposure and mitigate risks by updating to the latest firmware as detailed in the vendor's reference materials.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0014900000533089042,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46553,https://securityvulnerability.io/vulnerability/CVE-2023-46553,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"A stack overflow vulnerability has been identified in the TOTOLINK X2000R Router's firmware, specifically in the formParentControl function. This vulnerability may allow attackers to execute arbitrary code, potentially compromising the device's security and the network it operates on. It is crucial for users to be aware of this issue and implement available security updates to mitigate risks.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0014900000533089042,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46540,https://securityvulnerability.io/vulnerability/CVE-2023-46540,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"A stack overflow vulnerability has been identified in the TOTOLINK X2000R router firmware version v1.0.0-B20230221.0948.web, through the function formNtp. This flaw could potentially allow attackers to execute arbitrary code, compromising the integrity of the device and potentially leading to unauthorized access or denial of service.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46555,https://securityvulnerability.io/vulnerability/CVE-2023-46555,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R router version Gh v1.0.0-B20230221.0948.web contains a vulnerability that allows for a stack overflow condition through the formPortFw function. This flaw can potentially give attackers unauthorized access or enable the execution of arbitrary code, compromising the security of the device and the network it services. Protect your devices and network by ensuring all security measures are in place.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46556,https://securityvulnerability.io/vulnerability/CVE-2023-46556,Stack Overflow Vulnerability in TOTOLINK X2000R by TOTOLINK,"The TOTOLINK X2000R suffers from a stack overflow vulnerability in the formFilter function, allowing attackers to execute arbitrary code or cause a denial of service. This flaw is present in version Gh v1.0.0-B20230221.0948.web, highlighting the need for immediate remediation to ensure network device security. Affected users should consider applying patches or updates provided by TOTOLINK to mitigate potential exploitation.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46557,https://securityvulnerability.io/vulnerability/CVE-2023-46557,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"A vulnerability has been identified in the TOTOLINK X2000R router, specifically in version v1.0.0-B20230221.0948.web, where a function known as formMultiAPVLAN is susceptible to a stack overflow attack. This may potentially allow attackers to execute arbitrary code or disrupt the performance of the device, posing a significant risk to network integrity and user data protection.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46558,https://securityvulnerability.io/vulnerability/CVE-2023-46558,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"A stack overflow vulnerability has been identified in the TOTOLINK X2000R router firmware version v1.0.0-B20230221.0948.web. This flaw occurs in the function formMapDelDevice, which could potentially allow an attacker to execute arbitrary code or disrupt the normal operation of the device. Users are advised to review the associated firmware updates and apply necessary security measures to safeguard their routers against potential exploits.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46559,https://securityvulnerability.io/vulnerability/CVE-2023-46559,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R router, specifically version Gh v1.0.0-B20230221.0948, is vulnerable to a stack overflow issue that can be exploited via the function formIPv6Addr. This flaw could allow an attacker to execute arbitrary code or disrupt the operation of the device, posing significant risks to the security of the network it governs. Users are advised to implement the recommended updates and monitor their devices for any suspicious activity.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0014900000533089042,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46560,https://securityvulnerability.io/vulnerability/CVE-2023-46560,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R Router has been identified to have a stack overflow vulnerability in the formTcpipSetup function, potentially allowing an attacker to exploit the error and execute arbitrary code. This vulnerability poses significant risks to the integrity and security of the device, making it crucial for users to apply security updates and patches provided by the vendor to mitigate potential threats.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0014900000533089042,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46562,https://securityvulnerability.io/vulnerability/CVE-2023-46562,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"A stack overflow vulnerability was identified in the TOTOLINK X2000R router, specifically in the function formDosCfg. This weakness could allow unauthorized access and potential exploitation, impacting the device's overall security and functionality. Users are advised to update their firmware and follow security best practices to mitigate risks associated with this vulnerability.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0014900000533089042,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46563,https://securityvulnerability.io/vulnerability/CVE-2023-46563,Stack Overflow Vulnerability in TOTOLINK X2000R Router Software,"The TOTOLINK X2000R router software contains a stack overflow vulnerability in the formIpQoS function. This design flaw may allow an attacker to manipulate the execution flow, potentially leading to unauthorized access or arbitrary code execution. Users of the affected version should apply recommended patches or updates to mitigate the risks associated with this vulnerability.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0014900000533089042,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46564,https://securityvulnerability.io/vulnerability/CVE-2023-46564,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R router, specifically version v1.0.0-B20230221.0948, has been identified as having a stack overflow vulnerability in the function formDMZ. This flaw could enable attackers to execute arbitrary code, potentially leading to unauthorized access and manipulation of the device. Users are strongly advised to apply the latest updates and monitor their network for any suspicious activity. For further information, visit the official release notes and additional documentation.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0014900000533089042,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46554,https://securityvulnerability.io/vulnerability/CVE-2023-46554,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R router was found to have a stack overflow vulnerability in the formMapDel function. This flaw could potentially allow attackers to execute arbitrary code remotely, compromising the integrity and availability of the device. Users of affected firmware versions should take immediate steps to secure their routers by applying the latest updates and following best practices for network security.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0
CVE-2023-46541,https://securityvulnerability.io/vulnerability/CVE-2023-46541,Stack Overflow Vulnerability in TOTOLINK X2000R Router,"The TOTOLINK X2000R router, specifically version 1.0.0-B20230221.0948, has been identified with a stack overflow vulnerability in the 'formIpv6Setup' function. This flaw could allow an attacker to exploit the device, potentially leading to unauthorized access and control over the router's functionalities. Users are advised to review the firmware version and apply necessary patches as they become available to mitigate potential risks.",Totolink,X2000r Firmware,9.8,CRITICAL,0.0015300000086426735,false,,false,false,false,,,false,false,,2023-10-25T00:00:00.000Z,0