CVE-2025-52089 Information
Jul 12, 2025
cve
Description
A hidden remote support feature protected by a static secret in TOTOLINK N300RB firmware version 8.54 allows an authenticated attacker to execute arbitrary OS commands with root privileges.
Reference
http://n300rb.com http://totolink.com https://0x09.dev/posts/toto_decouvre_une_interface_de_debug/
Related CNNVD
CNNVD-202507-1651 (Published: 2025-07-11)
Share on: