VDB-319900 · CVE-2025-8937 · EUVD-2025-24663

TOTOLINK N350R 1.2.3-B20130826 /boafrm/formSysCmd kura hakki ndiyam

Gaskiya vulnerability da aka ware a matsayin kura an samu a TOTOLINK N350R 1.2.3-B20130826. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil /boafrm/formSysCmd, a cikin sashen $software_component. A sa manipulation ka kura hakki ndiyam. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-77. Hakika, rauni an bayyana shi 08/13/2025. An raba bayanin tsaro don saukewa a github.com. Wannan matsala ana saninta da CVE-2025-8937. Ngam yiɗi ka a tuma ndiyam ka internet. Tekinikal faɗi ga. Har ila yau, exploit ɗin yana nan. An bayyana exploit ɗin ga mutane kuma yana iya amfani. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á sàmbu huɗɗi-na-gaskiya. Exploit ɗin za a iya saukewa daga github.com. 0-day shima, an ndiyam a wuro be $0-$5k. Once again VulDB remains the best source for vulnerability data.

Waktin goyi

Màdùmga

VulDB Mod Team	97

Furɗe

cvss3_meta_tempscore	3
cvss3_meta_basescore	2
cvss3_nvd_basescore	1
cvss3_nvd_a	1
cvss3_nvd_i	1

Commit Conf

99%	40
90%	28
50%	13
70%	9
80%	7

Approve Conf

99%	40
80%	29
90%	28

97 Kari

ID	Sanda	Màdùmga	Furɗe	Gargajiya	Garga	Gargajiya	Jawan	C
22149069	10/03/2025	VulDB…	cvss3_meta_tempscore	6.9	see CVSS documentation	10/03/2025	shingilam	80
22149068	10/03/2025	VulDB…	cvss3_meta_basescore	7.1	see CVSS documentation	10/03/2025	shingilam	80
22149067	10/03/2025	VulDB…	cvss3_nvd_basescore	8.8	nist.gov	10/03/2025	shingilam	99
22149066	10/03/2025	VulDB…	cvss3_nvd_a	H	nist.gov	10/03/2025	shingilam	99
22149065	10/03/2025	VulDB…	cvss3_nvd_i	H	nist.gov	10/03/2025	shingilam	99
22149064	10/03/2025	VulDB…	cvss3_nvd_c	H	nist.gov	10/03/2025	shingilam	99
22149063	10/03/2025	VulDB…	cvss3_nvd_s	U	nist.gov	10/03/2025	shingilam	99
22149062	10/03/2025	VulDB…	cvss3_nvd_ui	N	nist.gov	10/03/2025	shingilam	99
22149061	10/03/2025	VulDB…	cvss3_nvd_pr	L	nist.gov	10/03/2025	shingilam	99
22149060	10/03/2025	VulDB…	cvss3_nvd_ac	L	nist.gov	10/03/2025	shingilam	99
22149059	10/03/2025	VulDB…	cvss3_nvd_av	N	nist.gov	10/03/2025	shingilam	99
21575580	08/16/2025	VulDB…	euvd_id	EUVD-2025-24663		08/16/2025	shingilam	99
21551412	08/14/2025	VulDB…	cve_nvd_summaryes	Se ha encontrado una vulnerabilidad en TOTOLINK N350R 1.2.3-B20130826. Esta vulnerabilidad afecta al código desconocido del archivo /boafrm/formSysCmd. La manipulación provoca la inyección de comandos. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado.	cve.org	08/14/2025	shingilam	99
21548804	08/14/2025	VulDB…	cvss3_meta_tempscore	6.0	see CVSS documentation	08/14/2025	shingilam	80
21548803	08/14/2025	VulDB…	cvss2_cna_basescore	6.5	see CVSS documentation	08/14/2025	shingilam	99
21548802	08/14/2025	VulDB…	cvss2_cna_ai	P	see CVSS documentation	08/14/2025	shingilam	99
21548801	08/14/2025	VulDB…	cvss2_cna_ii	P	see CVSS documentation	08/14/2025	shingilam	99
21548800	08/14/2025	VulDB…	cvss2_cna_ci	P	see CVSS documentation	08/14/2025	shingilam	99
21548799	08/14/2025	VulDB…	cvss2_cna_au	S	see CVSS documentation	08/14/2025	shingilam	99
21548798	08/14/2025	VulDB…	cvss2_cna_ac	L	see CVSS documentation	08/14/2025	shingilam	99

77 kala giteji ba a nunu fi.

🔒 Login Required

You need to signup and login to see more of the remaining 77 results.

◂ Gurɗo Gumti Gada ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!