Totolink X2000R Firmware vulnerabilities

CVE-2025-57579 [HIGH] CWE-798 CVE-2025-57579: An issue in TOTOLINK Wi-Fi 6 Router Series Device X2000R-Gh-V2.0.0 allows a remote attacker to execu An issue in TOTOLINK Wi-Fi 6 Router Series Device X2000R-Gh-V2.0.0 allows a remote attacker to execute arbitrary code via the default password

CVE-2025-9577 [LOW] CWE-1392 CVE-2025-9577: A security flaw has been discovered in TOTOLINK X2000R up to 2.0.0. The affected element is an unkno A security flaw has been discovered in TOTOLINK X2000R up to 2.0.0. The affected element is an unknown function of the file /etc/shadow.sample of the component Administrative Interface. The manipulation results in use of default credentials. Attacking locally is a requirement. Attacks of this nature are highly complex. The exploitability is described as

CVE-2025-8181 [HIGH] CWE-266 CVE-2025-8181: A vulnerability, which was classified as critical, was found in TOTOLINK N600R and X2000R 1.0.0.1. T A vulnerability, which was classified as critical, was found in TOTOLINK N600R and X2000R 1.0.0.1. This affects an unknown part of the file vsftpd.conf of the component FTP Service. The manipulation leads to least privilege violation. It is possible to initiate the attack remotely.

CVE-2025-5504 [MEDIUM] CWE-74 CVE-2025-5504: A vulnerability has been found in TOTOLINK X2000R 1.0.0-B20230726.1108 and classified as critical. T A vulnerability has been found in TOTOLINK X2000R 1.0.0-B20230726.1108 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formWsc. The manipulation of the argument peerRptPin leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was

CVE-2025-5516 [MEDIUM] CWE-79 CVE-2025-5516: A vulnerability, which was classified as problematic, was found in TOTOLINK X2000R 1.0.0-B20230726.1 A vulnerability, which was classified as problematic, was found in TOTOLINK X2000R 1.0.0-B20230726.1108. This affects an unknown part of the file /boafrm/formFilter of the component URL Filtering Page. The manipulation of the argument URL Address leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclos

CVE-2025-5542 [MEDIUM] CWE-79 CVE-2025-5542: A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problem A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formPortFw of the component Virtual Server Page. The manipulation of the argument service_type leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been dis

CVE-2025-5543 [MEDIUM] CWE-79 CVE-2025-5543: A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problemat A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the p

CVE-2025-5515 [MEDIUM] CWE-74 CVE-2025-5515: A vulnerability, which was classified as critical, has been found in TOTOLINK X2000R 1.0.0-B20230726 A vulnerability, which was classified as critical, has been found in TOTOLINK X2000R 1.0.0-B20230726.1108. Affected by this issue is some unknown functionality of the file /boafrm/formMapDel. The manipulation of the argument devicemac1 leads to command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may

CVE-2024-33433 [MEDIUM] CWE-233 CVE-2024-33433: Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote a Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote attacker to execute arbitrary code via the Guest Access Control parameter in the Wireless Page.

CVE-2024-28402 [MEDIUM] CWE-79 CVE-2024-28402: TOTOLINK X2000R before V1.0.0-B20231213.1013 contains a Stored Cross-site scripting (XSS) vulnerabil TOTOLINK X2000R before V1.0.0-B20231213.1013 contains a Stored Cross-site scripting (XSS) vulnerability in IP/Port Filtering under the Firewall Page.

CVE-2024-29419 [MEDIUM] CWE-79 CVE-2024-29419: There is a Cross-site scripting (XSS) vulnerability in the Wireless settings under the Easy Setup Pa There is a Cross-site scripting (XSS) vulnerability in the Wireless settings under the Easy Setup Page of TOTOLINK X2000R before v1.0.0-B20231213.1013.

CVE-2024-28404 [HIGH] CWE-79 CVE-2024-28404: TOTOLINK X2000R before V1.0.0-B20231213.1013 contains a Stored Cross-site scripting (XSS) vulnerabil TOTOLINK X2000R before V1.0.0-B20231213.1013 contains a Stored Cross-site scripting (XSS) vulnerability in MAC Filtering under the Firewall Page.

CVE-2024-28401 [MEDIUM] CWE-79 CVE-2024-28401: TOTOLINK X2000R before v1.0.0-B20231213.1013 contains a Store Cross-site scripting (XSS) vulnerabili TOTOLINK X2000R before v1.0.0-B20231213.1013 contains a Store Cross-site scripting (XSS) vulnerability in Root Access Control under the Wireless Page.

CVE-2024-28403 [MEDIUM] CWE-79 CVE-2024-28403: TOTOLINK X2000R before V1.0.0-B20231213.1013 is vulnerable to Cross Site Scripting (XSS) via the VPN TOTOLINK X2000R before V1.0.0-B20231213.1013 is vulnerable to Cross Site Scripting (XSS) via the VPN Page.

CVE-2024-22529 [CRITICAL] CWE-77 CVE-2024-22529: TOTOLINK X2000R_V2 V2.0.0-B20230727.10434 has a command injection vulnerability in the sub_449040 (h TOTOLINK X2000R_V2 V2.0.0-B20230727.10434 has a command injection vulnerability in the sub_449040 (handle function of formUploadFile) of /bin/boa.

CVE-2024-0579 [MEDIUM] CWE-74 CVE-2024-0579: A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452. Affected b A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452. Affected by this vulnerability is the function formMapDelDevice of the file /boafrm/formMapDelDevice. The manipulation of the argument macstr leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be u

CVE-2023-7222 [HIGH] CWE-120 CVE-2023-7222: A vulnerability was found in Totolink X2000R 1.0.0-B20221212.1452. It has been declared as critical. A vulnerability was found in Totolink X2000R 1.0.0-B20221212.1452. It has been declared as critical. This vulnerability affects the function formTmultiAP of the file /bin/boa of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclos

CVE-2023-7208 [HIGH] CWE-120 CVE-2023-7208: A vulnerability classified as critical was found in Totolink X2000R_V2 2.0.0-B20230727.10434. This v A vulnerability classified as critical was found in Totolink X2000R_V2 2.0.0-B20230727.10434. This vulnerability affects the function formTmultiAP of the file /bin/boa. The manipulation leads to buffer overflow. VDB-249742 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in

CVE-2023-51136 [CRITICAL] CWE-787 CVE-2023-51136: TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the func TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formRebootSchedule.

CVE-2023-51135 [CRITICAL] CWE-787 CVE-2023-51135: TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the func TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formPasswordSetup.