SecAlerts
CVE ListPricingSign Up
totolink logo

totolink

Security Risk Profile

55
/100
medium

Security Risk Score

Comprehensive risk assessment based on 1000 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from November 23, 2022 to present

1000
Total CVEs
818
Critical+High
1
Exploited
817
Unpatched

Threat Assessment

Avg CVSS
8.5
Base severity
Avg EPSS
1%
Exploit probability
Unpatched
817
Critical/High
Risk Level
55/100
medium
⚠️ 1 Active Exploits🆕 3Fresh (<7d)📈 38 in Last 30 Days

Severity Distribution

Critical
527
High
291
Medium
162
Low
20

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
7
<5%
538

Age Distribution

Common Weaknesses (CWE)

1
Command Injection
443
2
Buffer Overflow
292
3
OS Command Injection
262
4
Code Injection
25
5
XSS
25

Most Affected Products

1. TOTOLINK A3300R firmware77
2. TOTOLINK X5000r Firmware76
3. TOTOLINK X6000R Firmware61
4. TOTOLINK A7100ru Firmware53
5. TOTOLINK A3002R Firmware50

Recent Vulnerabilities

See more →
CVE-2026-11620
CVSS 5.5medium

TOTOLINK EX200 vsftpd vsftpd.conf least privilege violation

6/9/2026🔧 No Patch
CVE-2026-11554
CVSS 2.1low

TOTOLINK CP450 vsftpd vsftpd.conf least privilege violation

6/8/2026🔧 No Patch
CVE-2026-11494
CVSS 2.1low

TOTOLINK AC1200 T8 vsftpd vsftpd.conf least privilege violation

6/8/2026🔧 No Patch
CVE-2026-10187
CVSS 8.9high

Totolink N300RH Web Management wireless.so setWiFiBasicConfig stack-based overflow

5/31/2026🔧 No Patch
CVE-2026-9543
CVSS 8.9EPSS 0%high

Totolink N300RH Web Management cstecgi.cgi setPasswordCfg os command injection

5/26/2026🔧 No Patch
CVE-2026-9534
CVSS 2.1EPSS 5%low

Totolink CA750-PoE Setting cstecgi.cgi setWiFiWpsConfig os command injection

5/26/2026🔧 No Patch
CVE-2026-9533
CVSS 2.1EPSS 5%low

Totolink CA750-PoE Setting cstecgi.cgi recvUpgradeNewFw os command injection

5/26/2026🔧 No Patch
CVE-2026-9532
CVSS 2.1EPSS 5%low

Totolink CA750-PoE Setting cstecgi.cgi setUploadUserData os command injection

5/26/2026🔧 No Patch
CVE-2026-9531
CVSS 2.1EPSS 5%low

Totolink CA750-PoE Setting cstecgi.cgi setUpgradeUboot os command injection

5/26/2026🔧 No Patch
CVE-2026-9515
CVSS 2.1EPSS 5%low

Totolink CA750-PoE Setting cstecgi.cgi setUnloadUserData os command injection

5/25/2026🔧 No Patch

Monitor totolink in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.

totolink Security Vulnerabilities & Risk Score | 1000 CVEs | SecAlerts - SecAlerts