CVE-2025-9577

Name of the Vulnerable Software and Affected Versions TOTOLINK X2000R versions through 2.0.0

Description A security flaw has been discovered that allows for the use of default credentials. The affected element is an unknown function within the /etc/shadow.sample file of the Administrative Interface component. Local access is required for exploitation, which is described as difficult. The exploit has been released publicly and may be exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.