CVE-2025-52906

CWE-78OS Command Injection6 documents5 sources
Severity
9.3CRITICAL
EPSS
0.9%
top 23.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Totolink X6000rTotolink X6000r Firmware
Timeline
PublishedSep 24
Latest updateOct 1

Description

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in TOTOLINK X6000R allows OS Command Injection.This issue affects X6000R: through V9.4.0cu.1360_B20241207.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:L/SC:H/SI:H/SA:H/S:N

Affected Packages2 packages

CVEListV5totolink/x6000rV9.4.0cu.1360_B20241207
NVDtotolink/x6000r_firmware9.4.0cu.1360_b20241207

🔴Vulnerability Details

2
GHSA
GHSA-9vw4-pmg2-63m3: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in TOTOLINK X6000R allows OS Command Injectio2025-09-24
CVEList
TOTOLINK X6000R Command Injection Vulnerability2025-09-24

🔍Detection Rules

1
Suricata
ET WEB_SPECIFIC_APPS Totolink setEasyMeshAgentCfg agentName Parameter Command Injection Attempt (CVE-2025-52906, CVE-2025-61044, CVE-2025-61045)2025-09-23

🕵️Threat Intelligence

2
Unit42
TOTOLINK X6000R: Three New Vulnerabilities Uncovered2025-10-01
Unit42
TOTOLINK X6000R: Three New Vulnerabilities Uncovered2025-10-01
CVE-2025-52906 (CRITICAL CVSS 9.3) | Improper Neutralization of Special | cvebase.io