Totolink N301rt Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Totolink N301rt Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2019-19825 — CVSS 9.8 (critical): On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be retrieved via an {"topicurl":"setting/getSanvas"} POST to the…
CVE-2019-19824 — CVSS 8.8 (high): On certain TOTOLINK Realtek SDK based routers, an authenticated attacker may execute arbitrary OS commands via the sysCmd parameter to the…
CVE-2019-19822 — CVSS 7.5 (high): A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) allows remote attackers to retrieve the…
CVE-2019-19823 — CVSS 7.5 (high): A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords…