CVE-2025-55589 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain multiple OS command injection vulnerabilities via the macstr, bandstr, and clientoff parameters…
Medium CVSS: 6.5

CVE-2025-55589

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain multiple OS command injection vulnerabilities via the macstr, bandstr, and clientoff parameters at /boafrm/formMapDelDevice.
Vendor
Totolink
Product
A3002r Firmware
CWE
CWE-78
Yayın Tarihi
2025-08-18 20:15:31
Güncelleme
2025-08-21 14:10:47
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-78 A3002r Firmware MEDIUM Totolink 2025

Referanslar

https://github.com/goldenGlow21/softwares_PoC/blob/main/A3002R_V4/Boa%20-%20Command%20Injection/PoC%201.md