CVE-2025-13184

CWE-863Incorrect Authorization4 documents4 sources
Severity
9.8CRITICAL
EPSS
0.8%
top 26.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Toto Link X5000r's (ax1800 Router)Totolink X5000r Firmware
Timeline
PublishedDec 10

Description

Unauthenticated Telnet enablement via cstecgi.cgi (auth bypass) leading to unauthenticated root login with a blank password on factory/reset X5000R V9.1.0u.6369_B20230113 (arbitrary command execution). Earlier versions that share the same implementation, may also be affected.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5toto_link/x5000r's_(ax1800_router)< V9.1.0u.6369_B20230113
NVDtotolink/x5000r_firmware9.1.0u.6369_b20230113

🔴Vulnerability Details

2
CVEList
Unauthenticated Telnet enablement via cstecgi.cgi (auth bypass) leading to unauthenticated root login with a blank password2025-12-10
GHSA
GHSA-xr55-5xvm-9rw7: Unauthenticated Telnet enablement via cstecgi2025-12-10

🔍Detection Rules

1
Suricata
ET WEB_SPECIFIC_APPS Totolink enable enable Parameter Telnet enablement Authentication Bypass Attempt (CVE-2025-13184)2025-12-10
CVE-2025-13184 (CRITICAL CVSS 9.8) | Unauthenticated Telnet enablement v | cvebase.io