Totolink Ca600-poe Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Totolink Ca600-poe Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2025-44848 — CVSS 6.5 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the msg_process function via the Url…
CVE-2025-44840 — CVSS 6.5 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function…
CVE-2025-44841 — CVSS 6.5 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function…
CVE-2025-44842 — CVSS 6.5 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the msg_process function via the Port…
CVE-2025-44843 — CVSS 6.5 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function…
CVE-2025-44844 — CVSS 6.5 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the setUpgradeFW function via the…
CVE-2025-44845 — CVSS 6.5 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the NTPSyncWithHost function via the…
CVE-2025-44839 — CVSS 6.5 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function…
CVE-2025-44847 — CVSS 6.3 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the setWebWlanIdx function via the…
CVE-2025-44846 — CVSS 6.3 (medium): TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the recvUpgradeNewFw function via the…