Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-25605

Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the apcli_wps_gen_pincode function in mtkwifi.lua.

Published

2025-02-21T19:15:14.147

Last Modified

2025-04-04T15:29:44.367

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-77
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System totolink x5000r_firmware 9.1.0u.6369_b20230113 Yes
Hardware totolink x5000r - No
References