CNNVD-202508-1488 Information

CNNVD ID

CNNVD-202508-1488

Related CVE

CVE-2025-8937

• CNNVD Published: 2025-08-14

Description (Chinese)

TOTOLINK N350R是中国吉翁电子（TOTOLINK）公司的一个WiFi路由器。 TOTOLINK N350R 1.2.3-B20130826版本存在注入漏洞，该漏洞源于文件/boafrm/formSysCmd的错误操作导致命令注入。

Description (English)

TOTOLINK N350R is a WiFi router of the Chinese company TOTOLINK. The TOTOLINK N350R 1.2.3-B20130826 version has an injection loophole, which results from a document/boafrm/formSysCmd error that led to the command injection.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

吉翁电子

Published

2025-08-14

Last Modified

2026-02-24

References

https://github.com/rew1X/CVE/blob/main/TOTOLINK/formSysCmd/formSysCmd.md https://github.com/rew1X/CVE/blob/main/TOTOLINK/N350R_formSysCmd.pdf https://vuldb.com/?ctiid.319900 https://vuldb.com/?id.319900 https://vuldb.com/?submit.631826 https://vuldb.com/?submit.631838 https://www.totolink.net/