Every CVE whose affected-product data names Totolink X18 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2023-29798 — CVSS 9.8 (critical): TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the command parameter in the…
CVE-2023-29799 — CVSS 9.8 (critical): TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the hostname parameter in the…
CVE-2023-29800 — CVSS 9.8 (critical): TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the FileName parameter in the…
CVE-2023-29801 — CVSS 9.8 (critical): TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain multiple command injection vulnerabilities via the rtLogEnabled and…
CVE-2023-29802 — CVSS 9.8 (critical): TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the ip parameter in the…
CVE-2023-29803 — CVSS 9.8 (critical): TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the pid parameter in the disconnectVPN…
CVE-2025-29064 — CVSS 9.8 (critical): An issue in TOTOLINK x18 v.9.1.0cu.2024_B20220329 allows a remote attacker to execute arbitrary code via the sub_410E54 function of the…
CVE-2025-29209 — CVSS 9.8 (critical): TOTOLINK X18 v9.1.0cu.2024_B20220329 has an unauthorized arbitrary command execution in the enable parameter' of the sub_41105C function of…
CVE-2025-61044 — CVSS 9.8 (critical): TOTOLINK X18 V9.1.0cu.2053_B20230309 was discovered to contain a command injection vulnerability via the agentName parameter in the…
CVE-2025-61045 — CVSS 9.8 (critical): TOTOLINK X18 V9.1.0cu.2053_B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the…
CVE-2025-1340 — CVSS 8.8 (high): A vulnerability classified as critical has been found in TOTOLINK X18 9.1.0cu.2024_B20220329. Affected is the function setPasswordCfg of…
CVE-2024-10966 — CVSS 6.3 (medium): A vulnerability, which was classified as critical, has been found in TOTOLINK X18 9.1.0cu.2024_B20220329. Affected by this issue is some…
CVE-2025-1339 — CVSS 6.3 (medium): A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It has been rated as critical. This issue affects the function…
CVE-2025-1829 — CVSS 6.3 (medium): A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It has been declared as critical. This vulnerability affects the function…