CVE-2025-45858 – TOTOLINK A3002R Command Injection Vulnerability

May 13, 2025

CVE ID : CVE-2025-45858

Published : May 13, 2025, 4:15 p.m. | 3 hours, 44 minutes ago

Description : TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability via the FUN_00459fdc function.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-29840 – Windows Media Stack-based Buffer Overflow Remote Code Execution

Next Article CVE-2025-45863 – TOTOLINK A3002R Buffer Overflow in formMapDelDevice

GitHub’s CEO Thomas Dohmke steps down, triggering tighter integration of company within Microsoft

bitHuman launches SDK for creating AI avatars

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

I found a Google Maps alternative that won’t track you or drain your battery – and it’s free

I tested this new AI podcast tool to see if it can beat NotebookLM – here’s how it did

Microsoft’s new update makes your taskbar a productivity hub – here’s how

Save $50 on the OnePlus Pad 3 plus get a free gift – here’s the deal

Laravel Global Scopes: Automatic Query Filtering

Laravel Global Scopes: Automatic Query Filtering

Building MCP Servers in PHP

Filament v4 is Stable!

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

Madden NFL 26 Leads This Week’s Xbox Drops—But Don’t Miss These Hidden Gems

ASUS G14 Bulked Up for 2025—Still Sexy, Just a Bit Chonkier

CVE-2025-45858 – TOTOLINK A3002R Command Injection Vulnerability

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

WinRAR zero-day exploited in espionage attacks against high-value targets

CVE-2025-47687 – StoreKeeper for WooCommerce Unrestricted File Upload Vulnerability

CVE-2025-46731 – Craft CMS SSTI Remote Code Execution Vulnerability

CVE-2025-32752 – Dell ThinOS Cleartext Storage of Sensitive Information Vulnerability

China-Based APTs Deploy Fake Dalai Lama Apps to Spy on Tibetan Community

Control Statements in C: A Comprehensive Guide

Malware Injected into 5 npm Packages After Maintainer Tokens Stolen in Phishing Attack

Teaching AI models what they don’t know

CVE-2025-4349 – “Critical Command Injection in D-Link DIR-600L”

CVE-2025-45858 – TOTOLINK A3002R Command Injection Vulnerability

Related Posts