Known Vulnerabilities for A3002r by Totolink
Listed below are 7 of the newest known vulnerabilities associated with "A3002r" by "Totolink".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-34228 | Cross-site scripting in parent_control.htm in TOTOLINK A3002R version V1.1.1-B20200824 (Important Update, new UI) allows atta... | 6.1 - MEDIUM | 2021-08-20 | 2021-08-26 |
| CVE-2021-34223 | Cross-site scripting in urlfilter.htm in TOTOLINK A3002R version V1.1.1-B20200824 (Important Update, new UI) allows attackers... | 6.1 - MEDIUM | 2021-08-20 | 2021-08-26 |
| CVE-2021-34220 | Cross-site scripting in tr069config.htm in TOTOLINK A3002R version V1.1.1-B20200824 (Important Update, new UI) allows attacke... | 6.1 - MEDIUM | 2021-08-20 | 2021-08-26 |
| CVE-2021-34218 | Directory Indexing in Login Portal of Login Portal of TOTOLINK-A702R-V1.0.0-B20161227.1023 allows attacker to access /add/ , ... | 5.3 - MEDIUM | 2021-08-20 | 2021-08-26 |
| CVE-2021-34215 | Cross-site scripting in tcpipwan.htm in TOTOLINK A3002R version V1.1.1-B20200824 (Important Update, new UI) allows attackers ... | 6.1 - MEDIUM | 2021-08-20 | 2021-08-26 |
| CVE-2021-34207 | Cross-site scripting in ddns.htm in TOTOLINK A3002R version V1.1.1-B20200824 (Important Update, new UI) allows attackers to e... | 6.1 - MEDIUM | 2021-08-20 | 2021-08-26 |
| CVE-2020-25499 | TOTOLINK A3002RU-V2.0.0 B20190814.1034 allows authenticated remote users to modify the system's 'Run Command'. An attacker ca... | 8.8 - HIGH | 2020-12-09 | 2021-07-21 |