CVE-2025-28034 – TOTOLINK Router Pre-Auth Remote Command Execution Vulnerability

April 22, 2025

CVE ID : CVE-2025-28034

Published : April 22, 2025, 2:15 p.m. | 22 minutes ago

Description : TOTOLINK A800R V4.1.2cu.5137_B20200730, A810R V4.1.2cu.5182_B20201026, A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a pre-auth remote command execution vulnerability in the NTPSyncWithHost function through the hostTime parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleTired of unsolicited nude pics? Google’s new safety feature can help – how it works

Next Article CVE-2025-28033 – Totolink Router Pre-Auth Buffer Overflow Vulnerability

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Distribution Release: Q4OS 6.1

Learning from PHP Log to File Example

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

Package efficiency and dependency hygiene

Dmitry — The Deep Magic

Dmitry — The Deep Magic

Right way to record and share our Terminal sessions

Windows 11 Powers Up WSL: How GPU Acceleration & Kernel Upgrades Change the Game

CVE-2025-28034 – TOTOLINK Router Pre-Auth Remote Command Execution Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Student Insider Threats Driving Surge in UK School Data Breaches, ICO Warns

CVE-2025-6244 – Elementor – Stored Cross-Site Scripting in Calendar and Business Reviews Widgets

AI Agents and the Non‑Human Identity Crisis: How to Deploy AI More Securely at Scale

Diablo 4, one of Blizzard’s best Xbox games, is now 64% off — a devilish Anti-Amazon Prime Day discount that’s worth taking over Amazon’s deals

Mutual Reinforcement of LLM Dialogue Synthesis and Summarization Capabilities for Few-Shot Dialogue Summarization

CVE-2025-47863 – Google Chrome Denial of Service

CVE-2025-48488 – FreeScout Cross-Site Scripting (XSS) Vulnerability

Top Reasons Enterprises Should Invest in Cross-Platform Apps with React Native🏢

CVE-2025-5693 – PHPGurukul Human Metapneumovirus Testing Management System SQL Injection

CVE-2025-28034 – TOTOLINK Router Pre-Auth Remote Command Execution Vulnerability

Related Posts