All 5 CVE vulnerabilities found in CA300-PoE, with AI-generated Chinese analysis, references, and POCs.
Vendor: TOTOLINK
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-6621 | TOTOLINK CA300-PoE ap.so QuickSetting os command injection CWE-78 | 6.3 | Medium | 2025-06-25 |
| CVE-2025-6620 | TOTOLINK CA300-PoE upgrade.so setUpgradeUboot os command injection CWE-78 | 6.3 | Medium | 2025-06-25 |
| CVE-2025-6619 | TOTOLINK CA300-PoE upgrade.so setUpgradeFW os command injection CWE-78 | 6.3 | Medium | 2025-06-25 |
| CVE-2025-6618 | TOTOLINK CA300-PoE wps.so SetWLanApcliSettings os command injection CWE-78 | 6.3 | Medium | 2025-06-25 |
| CVE-2024-7217 | TOTOLINK CA300-PoE cstecgi.cgi loginauth buffer overflow CWE-120 | 6.3 | Medium | 2024-07-30 |
All 5 known CVE vulnerabilities affecting CA300-PoE with full Chinese analysis, references, and POCs where available.