Totolink Ca600 Poe Firmware

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Totolink Ca600 Poe Firmware.

By the Year

In 2026 there have been 0 vulnerabilities in Totolink Ca600 Poe Firmware. Last year, in 2025 Ca600 Poe Firmware had 10 security vulnerabilities published. Right now, Ca600 Poe Firmware is on track to have less security vulnerabilities in 2026 than it did last year.

Year	Vulnerabilities	Average Score
2026	0	0.00
2025	10	0.00

It may take a day or so for new Ca600 Poe Firmware vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Totolink Ca600 Poe Firmware Security Vulnerabilities

TOTOLINK CA600-PoE V5.3c.6665_B20180820 CMD Injection via URL Param
CVE-2025-44848 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the msg_process function via the Url parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

TOTOLINK CA600-PoE V5.3c.6665_B20180820 Command Injection via setWebWlanIdx
CVE-2025-44847 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the setWebWlanIdx function via the webWlanIdx parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

TOTOLINK CA600-PoE V5.3c.6665_B20180820 Cmd Injection fwUrl
CVE-2025-44846 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the recvUpgradeNewFw function via the fwUrl parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

TOTOLINK CA600-PoE V5.3c Cmd Injection in NTPSyncWithHost
CVE-2025-44845 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the NTPSyncWithHost function via the hostTime parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

TOTOLINK CA600-PoE V5.3c.6665_B20180820 CmdInj via setUpgradeFW
CVE-2025-44844 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the setUpgradeFW function via the FileName parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

Command Injection in Totolink CA600-PoE V5.3c CloudSrvUserdataVersionCheck
CVE-2025-44843 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function via the url parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

Command Injection in TOTOLINK CA600-PoE v5.3c via Port parameter
CVE-2025-44842 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the msg_process function via the Port parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

TOTOLINK CA600-PoE V5.3c.6665_B20180820 cmd injection via version param
CVE-2025-44841 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function via the version parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

CI in TOTOLINK CA600-PoE (V5.3c.6665_B20180820) CloudSrvUserdataVerChk
CVE-2025-44840 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function via the svn parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

Cmd injection in TOTOLINK CA600-PoE V5.3 via magicid
CVE-2025-44839 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function via the magicid parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Totolink Ca600 Poe Firmware or by Totolink? Click the Watch button to subscribe.

Totolink
Vendor

Totolink Ca600 Poe Firmware
Product

Totolink Ca600 Poe Firmware

Don't miss out!

By the Year

Recent Totolink Ca600 Poe Firmware Security Vulnerabilities

TOTOLINK CA600-PoE V5.3c.6665_B20180820 CMD Injection via URL Param CVE-2025-44848 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 Command Injection via setWebWlanIdx CVE-2025-44847 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 Cmd Injection fwUrl CVE-2025-44846 - May 01, 2025

TOTOLINK CA600-PoE V5.3c Cmd Injection in NTPSyncWithHost CVE-2025-44845 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 CmdInj via setUpgradeFW CVE-2025-44844 - May 01, 2025

Command Injection in Totolink CA600-PoE V5.3c CloudSrvUserdataVersionCheck CVE-2025-44843 - May 01, 2025

Command Injection in TOTOLINK CA600-PoE v5.3c via Port parameter CVE-2025-44842 - May 01, 2025

TOTOLINK CA600-PoE V5.3c.6665_B20180820 cmd injection via version param CVE-2025-44841 - May 01, 2025

CI in TOTOLINK CA600-PoE (V5.3c.6665_B20180820) CloudSrvUserdataVerChk CVE-2025-44840 - May 01, 2025

Cmd injection in TOTOLINK CA600-PoE V5.3 via magicid CVE-2025-44839 - May 01, 2025