Totolink N200re Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Totolink N200re Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (21)
CVE-2019-19825 — CVSS 9.8 (critical): On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be retrieved via an {"topicurl":"setting/getSanvas"} POST to the…
CVE-2025-55895 — CVSS 9.1 (critical): TOTOLINK A3300R V17.0.0cu.557_B20221024 and N200RE V9.3.5u.6448_B20240521 and V9.3.5u.6437_B20230519 are vulnerable to Incorrect Access…
CVE-2019-19824 — CVSS 8.8 (high): On certain TOTOLINK Realtek SDK based routers, an authenticated attacker may execute arbitrary OS commands via the sysCmd parameter to the…
CVE-2019-19822 — CVSS 7.5 (high): A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) allows remote attackers to retrieve the…
CVE-2019-19823 — CVSS 7.5 (high): A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords…
CVE-2024-0298 — CVSS 7.3 (high): A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It has been classified as critical. Affected is the function…
CVE-2024-0296 — CVSS 7.3 (high): A vulnerability has been found in Totolink N200RE 9.3.5u.6139_B20201216 and classified as critical. This vulnerability affects the function…
CVE-2024-0297 — CVSS 7.3 (high): A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216 and classified as critical. This issue affects the function…
CVE-2024-0299 — CVSS 7.3 (high): A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It has been declared as critical. Affected by this vulnerability is the…
CVE-2024-0997 — CVSS 7.2 (high): A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216 and classified as critical. Affected by this issue is the function…
CVE-2024-1001 — CVSS 7.2 (high): A vulnerability classified as critical has been found in Totolink N200RE 9.3.5u.6139_B20201216. Affected is the function main of the file…
CVE-2024-1002 — CVSS 7.2 (high): A vulnerability classified as critical was found in Totolink N200RE 9.3.5u.6139_B20201216. Affected by this vulnerability is the function…
CVE-2024-1003 — CVSS 7.2 (high): A vulnerability, which was classified as critical, has been found in Totolink N200RE 9.3.5u.6139_B20201216. Affected by this issue is the…
CVE-2024-1004 — CVSS 7.2 (high): A vulnerability, which was classified as critical, was found in Totolink N200RE 9.3.5u.6139_B20201216. This affects the function loginAuth…
CVE-2024-0998 — CVSS 7.2 (high): A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It has been classified as critical. This affects the function…
CVE-2024-0999 — CVSS 7.2 (high): A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It has been declared as critical. This vulnerability affects the…
CVE-2024-1000 — CVSS 7.2 (high): A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216. It has been rated as critical. This issue affects the function…
CVE-2025-55893 — CVSS 6.5 (medium): TOTOLINK N200RE V9.3.5u.6437_B20230519 is vulnerable to command Injection in setOpModeCfg via hostName.
CVE-2025-7154 — CVSS 6.3 (medium): A vulnerability, which was classified as critical, has been found in TOTOLINK N200RE 9.3.5u.6095_B20200916/9.3.5u.6139_B20201216. Affected…
CVE-2020-23617 — CVSS 6.1 (medium): A cross site scripting (XSS) vulnerability in the error page of Totolink N200RE and N100RE Routers 2.0 allows attackers to execute…
CVE-2023-2790 — CVSS 2.3 (low): A vulnerability classified as problematic has been found in TOTOLINK N200RE 9.3.5u.6255_B20211224. Affected is an unknown function of the…