COOEY // HUBcompliance · community · intelligence

FAIL › dossier

a3100r product

2
failure events
0
zero-days
1
RCEs
0
on KEV
2
critical
50
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 2 events

DateEventSevFlagsShameSummary
2022-03-11 CVE-2021-44620 critical ⚡RCE 50 A Command Injection vulnerability exits in TOTOLINK A3100R <=V4.1.2cu.5050_B20200504 in adm/ntm.asp via the hosTime parameters.
2022-03-30 CVE-2021-46009 critical 35 In Totolink A3100R V5.9c.4577, multiple pages can be read by curl or Burp Suite without authentication. Additionally, admin configurations can be set without cookies.