Version 4.1.0cu.747_b20191224

CVE-2024-34215

TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a stack buffer overflow vulnerability in the setUrlFilterRules function.

HIGH CVSS 7.3 Published

CVE-2024-34212

TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a stack buffer overflow vulnerability in the CloudACMunualUpdate function.

HIGH CVSS 7.3 Published

CVE-2024-34202

TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a stack buffer overflow vulnerability in the setMacFilterRules function.

MEDIUM CVSS 6.5 Published

CVE-2024-34201

TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a stack buffer overflow vulnerability in the getSaveConfig function.

HIGH CVSS 7.3 Published

CVE-2024-34205

TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection vulnerability in the download_firmware function.

HIGH CVSS 7.3 Published

CVE-2024-34209

TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a stack buffer overflow vulnerability in the setIpPortFilterRules function.

CRITICAL CVSS 9.8 Published

CVE-2024-34213

TOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a stack buffer overflow vulnerability in the SetPortForwardRules function.

CRITICAL CVSS 9.8 Published

CVE-2024-34200

TOTOLINK CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a stack buffer overflow vulnerability in the setIpQosRules function.

HIGH CVSS 8.8 Published

CVE-2024-34218

TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection vulnerability in the NTPSyncWithHost function via the hostTime parameter.

LOW CVSS 3.8 Published