Totolink N350R vulnerabilities
2 known vulnerabilities affecting totolink/n350r.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-8937P1HIGHCVSS 8.8Exploitedv1.2.3-B201308262025-08-14
CVE-2025-8937 [HIGH] CWE-74 CVE-2025-8937: A vulnerability has been found in TOTOLINK N350R 1.2.3-B20130826. This vulnerability affects unknown
A vulnerability has been found in TOTOLINK N350R 1.2.3-B20130826. This vulnerability affects unknown code of the file /boafrm/formSysCmd. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
nvd
CVE-2025-8938P3MEDIUMCVSS 6.3v1.2.3-B201308262025-08-14
CVE-2025-8938 [MEDIUM] CWE-912 CVE-2025-8938: A vulnerability was found in TOTOLINK N350R 1.2.3-B20130826. This issue affects the function formSys
A vulnerability was found in TOTOLINK N350R 1.2.3-B20130826. This issue affects the function formSysTel of the file /boafrm/formSysTel of the component Telnet Service. The manipulation of the argument TelEnabled leads to backdoor. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
nvd