Metrics
Affected Vendors & Products
Mon, 12 May 2025 20:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Totolink Totolink a3700r Totolink a3700r Firmware | |
| Weaknesses | NVD-CWE-noinfo | |
| CPEs | cpe:2.3:h:totolink:a3700r:-:*:*:*:*:*:*:* cpe:2.3:o:totolink:a3700r_firmware:9.1.2u.5822_b20200513:*:*:*:*:*:*:* | |
| Vendors & Products | Totolink Totolink a3700r Totolink a3700r Firmware | 
Wed, 16 Apr 2025 14:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | ssvc 
 | 
Wed, 16 Apr 2025 07:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | A vulnerability was found in TOTOLINK A3700R 9.1.2u.5822_B20200513. It has been rated as critical. Affected by this issue is the function setL2tpServerCfg of the file /cgi-bin/cstecgi.cgi. The manipulation leads to improper access controls. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. | |
| Title | TOTOLINK A3700R cstecgi.cgi setL2tpServerCfg access control | |
| Weaknesses | CWE-266 CWE-284 | |
| References |  | |
| Metrics | cvssV2_0 
 
 
 
 | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: VulDB
Published: 2025-04-16T07:00:16.491Z
Updated: 2025-04-16T13:28:11.582Z
Reserved: 2025-04-16T00:52:32.027Z
Link: CVE-2025-3675
 Vulnrichment
                        Vulnrichment
                    Updated: 2025-04-16T13:27:48.011Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2025-04-16T07:15:43.947
Modified: 2025-05-12T19:49:26.683
Link: CVE-2025-3675
 Redhat
                        Redhat
                    No data.