A7100ru_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
A7100ru_firmware
(Totolink)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	36

Date	Id	Summary	Products	Score	Patch	Annotated
2023-01-20	CVE-2022-48123	TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the setting/delStaticDhcpRules function.	A7100ru_firmware	9.8
2023-01-20	CVE-2022-48125	TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the password parameter in the setting/setOpenVpnCertGenerationCfg function.	A7100ru_firmware	9.8
2023-01-20	CVE-2022-48126	TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the username parameter in the setting/setOpenVpnCertGenerationCfg function.	A7100ru_firmware	9.8
2023-06-07	CVE-2023-33556	TOTOLink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the staticGw parameter at /setting/setWanIeCfg.	A7100ru_firmware	9.8
2023-05-05	CVE-2023-30053	TOTOLINK A7100RU V7.4cu.2313_B20191024 is vulnerable to Command Injection.	A7100ru_firmware	9.8
2023-05-05	CVE-2023-30054	TOTOLINK A7100RU V7.4cu.2313_B20191024 has a Command Injection vulnerability. An attacker can obtain a stable root shell through a specially constructed payload.	A7100ru_firmware	9.8
2023-04-07	CVE-2023-26848	TOTOlink A7100RU(V7.4cu.2313_B20191024) was discovered to contain a command injection vulnerability via the org parameter at setting/delStaticDhcpRules.	A7100ru_firmware	9.8
2023-04-07	CVE-2023-26978	TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the pppoeAcName parameter at /setting/setWanIeCfg.	A7100ru_firmware	9.8
2023-03-28	CVE-2023-27229	TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the upBw parameter at /setting/setWanIeCfg.	A7100ru_firmware	9.8
2023-03-28	CVE-2023-27231	TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the downBw parameter at /setting/setWanIeCfg.	A7100ru_firmware	9.8