CVE-2025-7862 – “TOTOLINK Telnet Service Remote Authentication Bypass”

CVE ID : CVE-2025-7862

Published : July 20, 2025, 3:15 a.m. | 1 hour, 35 minutes ago

Description : A vulnerability has been found in TOTOLINK T6 4.1.5cu.748_B20211015 and classified as critical. Affected by this vulnerability is the function setTelnetCfg of the file /cgi-bin/cstecgi.cgi of the component Telnet Service. The manipulation of the argument telnet_enabled with the input 1 leads to missing authentication. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…