TOTOLINK A7000R Login Bypass Vulnerability

Vulnerability

A login bypass vulnerability has been identified in TOTOLINK A7000R routers running firmware version 9.1.0u.6115_B20201022. An attacker can exploit this vulnerability by sending a specific request through the formLoginAuth.htm page, effectively bypassing the authentication process.

Impact

Exploitation of this vulnerability allows for unauthorized access to the router's administrative interface, potentially leading to further configuration changes or management of the device.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

7.5

exploitability

7.8

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

7.5

exploitability

7.8

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TOTOLINK A7000R Login Bypass Vulnerability

Vulnerability

Impact

Affected Products

TOTOLINK A7000R

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating