PT-2025-39196 · Totolink · Totolink X6000R

Published

2025-09-23

Updated

2025-10-01

CVE-2025-52905

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions TOTOLINK X6000R versions through V9.4.0cu.1360 B20241207

Description An improper input validation issue exists in TOTOLINK X6000R, potentially allowing for flooding attacks. The issue affects the device due to insufficient validation of input data.

Recommendations Update TOTOLINK X6000R to a version later than V9.4.0cu.1360 B20241207.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2025-12685

CVE-2025-52905

Affected Products

Totolink X6000R

PT-2025-39196 · Totolink · Totolink X6000R

CVE-2025-52905

Weakness Enumeration

Related Identifiers

Affected Products

References · 9