Primary

Context

TOTOLINK A3300R and N200RE Incorrect Access Control Vulnerability

Vulnerability

A vulnerability allowing incorrect access control has been identified in TOTOLINK A3300R version 17.0.0cu.557_B20221024 and N200RE versions 9.3.5u.6448_B20240521 and 9.3.5u.6437_B20230519. This vulnerability allows attackers to send payloads to the device interface without requiring authentication, potentially leading to unauthorized actions or access.

Impact

Exploitation of this vulnerability could allow unauthorized users to interact with the device interface, potentially leading to unauthorized access or actions on the device.

Added: Dec 15, 2025, 9:37 PM

Updated: Dec 15, 2025, 9:37 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

7.0

remediation

0.0

relevance

1.5

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

7.0

remediation

0.0

relevance

1.5

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TOTOLINK A3300R and N200RE Incorrect Access Control Vulnerability

Vulnerability

Impact

Affected Products

TOTOLINK N200RE

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating