Totolink N300Rt-V2 Firmware vulnerabilities
2 known vulnerabilities affecting totolink/n300rt-v2_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2015-9551CRITICALCVSS 9.8fixed in 2.1.1-b20150708.16132020-11-24
CVE-2015-9551 [CRITICAL] CVE-2015-9551: An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B201
An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. There is Remote Code Execution in the management interface via the formSysCmd sysCmd parameter.
nvd
CVE-2015-9550HIGHCVSS 7.5fixed in 2.1.1-b20150708.16132020-11-24
CVE-2015-9550 [HIGH] CWE-668 CVE-2015-9550: An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B201
An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. By sending a specific hel,xasf packet to the WAN interface, it is possible to open the web management interface on the WAN interface.
nvd