Totolink A800r Firmware Security Vulnerabilities in 2026

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Totolink A800r Firmware.

By the Year

In 2026 there have been 0 vulnerabilities in Totolink A800r Firmware. Last year, in 2025 A800r Firmware had 6 security vulnerabilities published. Right now, A800r Firmware is on track to have less security vulnerabilities in 2026 than it did last year.

Year	Vulnerabilities	Average Score
2026	0	0.00
2025	6	0.00

It may take a day or so for new A800r Firmware vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Totolink A800r Firmware Security Vulnerabilities

TOTOLINK A800R V4.1.2cu.5137_B20200730 Buffer Overflow in downloadFile.cgi v25
CVE-2025-28020 - April 23, 2025

TOTOLINK A800R V4.1.2cu.5137_B20200730 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v25 parameter.

TOTOLINK A800R V4.1.2cu.5137_B20200730 Buffer Overflow in downloadFile.cgi
CVE-2025-28019 - April 23, 2025

TOTOLINK A800R V4.1.2cu.5137_B20200730 was found to contain a buffer overflow vulnerability in the downloadFile.cgi component

TOTOLINK A800R V4.1.2cu.5137_B20200730 Buffer Overflow in downloadFile.cgi (v14)
CVE-2025-28018 - April 23, 2025

TOTOLINK A800R V4.1.2cu.5137_B20200730 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v14 parameter.

Cmd Injt in downloadFile.cgi on TOTOLINK A800R (v4.1.2cu.5032_B20200408)
CVE-2025-28017 - April 23, 2025

TOTOLINK A800R V4.1.2cu.5032_B20200408 is vulnerable to Command Injection in downloadFile.cgi via the QUERY_STRING parameter.

TOTOLINK A800R V4.1.2cu Buffer Overflow in downloadFile.cgi
CVE-2025-28136 - April 15, 2025

TOTOLINK A800R V4.1.2cu.5137_B20200730 was found to contain a buffer overflow vulnerability in the downloadFile.cgi.

Pre-Auth RCE in TOTOLINK A800R V4.1.2cu.5137_B20200730 setNoticeCfg via NoticeUrl
CVE-2025-28138 - March 27, 2025

The TOTOLINK A800R V4.1.2cu.5137_B20200730 were found to contain a pre-auth remote command execution vulnerability in the setNoticeCfg function through the NoticeUrl parameter.

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Totolink A800r Firmware or by Totolink? Click the Watch button to subscribe.

Totolink
Vendor

Totolink A800r Firmware
Product

Totolink A800r Firmware

Don't miss out!

By the Year

Recent Totolink A800r Firmware Security Vulnerabilities

TOTOLINK A800R V4.1.2cu.5137_B20200730 Buffer Overflow in downloadFile.cgi v25 CVE-2025-28020 - April 23, 2025

TOTOLINK A800R V4.1.2cu.5137_B20200730 Buffer Overflow in downloadFile.cgi CVE-2025-28019 - April 23, 2025

TOTOLINK A800R V4.1.2cu.5137_B20200730 Buffer Overflow in downloadFile.cgi (v14) CVE-2025-28018 - April 23, 2025

Cmd Injt in downloadFile.cgi on TOTOLINK A800R (v4.1.2cu.5032_B20200408) CVE-2025-28017 - April 23, 2025

TOTOLINK A800R V4.1.2cu Buffer Overflow in downloadFile.cgi CVE-2025-28136 - April 15, 2025

Pre-Auth RCE in TOTOLINK A800R V4.1.2cu.5137_B20200730 setNoticeCfg via NoticeUrl CVE-2025-28138 - March 27, 2025