Totolink A7100ru Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Totolink A7100ru Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (37)
CVE-2022-28575 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the setopenvpnclientcfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-28577 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the delParentalRules interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-28578 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the setOpenVpnCfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-28579 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the setParentalRules interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-28580 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the setL2tpServerCfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-28581 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the setWiFiAdvancedCfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-28582 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the setWiFiSignalCfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-28583 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the setWiFiWpsCfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-28584 — CVSS 9.8 (critical): It is found that there is a command injection vulnerability in the setWiFiWpsStart interface in TOTOlink A7100RU (v7.4cu.2313_b20191024)…
CVE-2022-44843 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the port parameter in the…
CVE-2022-44844 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the pass parameter in the…
CVE-2022-46631 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the wscDisabled parameter in the…
CVE-2022-46634 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the wscDisabled parameter in the…
CVE-2022-47853 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 is vulnerable to Command Injection Vulnerability in the httpd service. An attacker can obtain a…
CVE-2022-48121 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the rsabits parameter in the…
CVE-2022-48122 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the dayvalid parameter in the…
CVE-2022-48123 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the…
CVE-2022-48124 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the FileName parameter in the…
CVE-2022-48125 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the password parameter in the…
CVE-2022-48126 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the username parameter in the…
CVE-2023-24236 — CVSS 9.8 (critical): TOTOlink A7100RU(V7.4cu.2313_B20191024) was discovered to contain a command injection vulnerability via the province parameter at…
CVE-2023-24238 — CVSS 9.8 (critical): TOTOlink A7100RU(V7.4cu.2313_B20191024) was discovered to contain a command injection vulnerability via the city parameter at…
CVE-2023-24276 — CVSS 9.8 (critical): TOTOlink A7100RU(V7.4cu.2313_B20191024) was discovered to contain a command injection vulnerability via the country parameter at…
CVE-2023-25395 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 router was discovered to contain a command injection vulnerability via the ou parameter at…
CVE-2023-26848 — CVSS 9.8 (critical): TOTOlink A7100RU(V7.4cu.2313_B20191024) was discovered to contain a command injection vulnerability via the org parameter at…
CVE-2023-26978 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the pppoeAcName parameter at…
CVE-2023-27135 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the enabled parameter at…
CVE-2023-27229 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the upBw parameter at…
CVE-2023-27231 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the downBw parameter at…
CVE-2023-27232 — CVSS 9.8 (critical): TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the wanStrategy parameter at…
CVE-2023-30054 — CVSS 9.8 (critical): TOTOLINK A7100RU V7.4cu.2313_B20191024 has a Command Injection vulnerability. An attacker can obtain a stable root shell through a…
CVE-2023-33556 — CVSS 9.8 (critical): TOTOLink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the staticGw parameter at…
CVE-2023-6906 — CVSS 9.8 (critical): A vulnerability, which was classified as critical, was found in Totolink A7100RU 7.4cu.2313_B20191024. Affected is the function main of the…
CVE-2023-7095 — CVSS 9.8 (critical): A vulnerability, which was classified as critical, has been found in Totolink A7100RU 7.4cu.2313_B20191024. Affected by this issue is the…
CVE-2025-44655 — CVSS 9.8 (critical): In TOTOLink A7100RU V7.4, A950RG V5.9, and T10 V5.9, the chroot_local_user option is enabled in the vsftpd.conf. This could lead to…