x6000r_firmware

9.4.0cu.1041_b20240224

OTHER 1 CVE

9.4.0cu.852_b20230719

OTHER 7 CVEs

9.4.0cu.652_b20230116

OTHER 18 CVEs

CVE-2024-52723

In TOTOLINK X6000R V9.4.0cu.1041_B20240224 in the shttpd file, the Uci_Set Str function is used without strict parameter filtering. An attacker can achieve arbitrary command execution by constructing the payload.

CRITICAL Nov 22, 2024

CVE-2023-46412

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution vulnerability via the sub_41D998 function.

UNKNOWN Oct 25, 2023

CVE-2023-46417

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_415498 function.

UNKNOWN Oct 25, 2023

CVE-2023-46418

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_412688 function.

UNKNOWN Oct 25, 2023

CVE-2023-46416

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_ The 41A414 function.

UNKNOWN Oct 25, 2023

CVE-2023-46422

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_411994 function.

UNKNOWN Oct 25, 2023

CVE-2023-46421

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_411D00 function.

UNKNOWN Oct 25, 2023

CVE-2023-46414

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_ 41D494 function.

UNKNOWN Oct 25, 2023

CVE-2023-46410

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution vulnerability via the sub_ The 416F60 function.

UNKNOWN Oct 25, 2023

CVE-2023-46423

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_417094 function.

UNKNOWN Oct 25, 2023