Skip to content
Medium Published: Dec 15, 2025 Modified: Dec 15, 2025

CVE-2025-55901

6.5 CVSS Score Medium
Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Export CVE-2025-55901 Data:
Share:
Link copied!

Description

TOTOLINK A3300R V17.0.0cu.596_B20250515 is vulnerable to command injection in the function NTPSyncWithHost via the host_time parameter.

CVSS Vector Details

Attack Vector Adjacent
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity High
Availability None

Weaknesses (CWE)

  • CWE-77

References & External Links

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More
← Back to CVE Tracker