Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-55901

TOTOLINK A3300R V17.0.0cu.596_B20250515 is vulnerable to command injection in the function NTPSyncWithHost via the host_time parameter.

Published

2025-12-15T17:15:53.353

Last Modified

2025-12-17T19:20:33.033

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-77
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System totolink a3300r_firmware 17.0.0cu.596_b20250515 Yes
Hardware totolink a3300r - No
References