Security Advisory

CVE-2025-34319

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-03 16:49:11

Last updated 2026-05-14 02:08:12

Assigner VulnCheck

State PUBLISHED

Description

TOTOLINK N300RT wireless router firmware versions prior to V3.4.0-B20250430 (discovered in V2.1.8-B20201030.1539) contain an OS command injection vulnerability in the Boa formWsc handling functionality. An unauthenticated attacker can send specially crafted requests to trigger command execution via the targetAPSsid request parameter.

← Browse all CVEs View on cve.org ↗