CVE-2025-55901

Description

TOTOLINK A3300R V17.0.0cu.596_B20250515 is vulnerable to command injection in the function NTPSyncWithHost via the host_time parameter.

PUBLISHED Reserved 2025-08-16 | Published 2025-12-15 | Updated 2025-12-15 | Assigner mitre

References

www.totolink.net

github.com/l0tk3/CVES/blob/main/CVE-2025-55901.pdf

cve.org (CVE-2025-55901)

nvd.nist.gov (CVE-2025-55901)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.