Skip to main content

TOTOLINK Routers CVE-2026-15271

| EUVDEUVD-2026-42725 HIGH
Least Privilege Violation (CWE-272)
2026-07-09 VulDB GHSA-f8vj-vmgj-67x6
7.7
CVSS 4.0 · Vendor: VulDB
Share

Severity by source

Vendor (VulDB) PRIMARY
7.7 HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
7.5 HIGH

Network-reachable Boa interface but requires low-privilege access (PR:L) and difficult exploitation (AC:H); high C/I/A retained to match reported privilege-boundary impact, no scope change.

3.1 AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
4.0 AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (VulDB).

CVSS VectorVendor: VulDB

CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

1
Analysis Generated
Jul 09, 2026 - 22:07 vuln.today

DescriptionCVE.org

A security vulnerability has been detected in TOTOLINK A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185R_T10 and EX200 up to 20260906. Affected by this issue is some unknown functionality of the file /etc/boa/boa.conf of the component Web Interface. The manipulation leads to least privilege violation. The attack may be initiated remotely. The attack's complexity is rated as high. The exploitation is known to be difficult.

AnalysisAI

Least-privilege violation across multiple TOTOLINK SOHO router models (A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185R_T10, EX200 through firmware 20260906) stems from the /etc/boa/boa.conf configuration of the Boa web-server interface, allowing a low-privileged remote actor to gain access or information beyond their intended authorization boundary. The flaw carries CVSS 4.0 base score 7.7 with high attack complexity, and VulDB rates real-world exploitation as difficult. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach Boa web interface remotely
Delivery
Authenticate with low privileges
Exploit
Abuse boa.conf least-privilege flaw
Execution
Escalate access or read protected config
Impact
Disclose credentials/compromise device

Vulnerability AssessmentAI

Exploitation Exploitation requires network reachability to the Boa web interface AND a pre-existing low-privilege foothold on the device (CVSS PR:L) - it is not a remote-unauthenticated flaw. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Signals are mixed and lean toward moderate, not urgent, priority. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A low-privileged authenticated user (or an attacker who has obtained limited web-interface access) reaches the Boa web server over the network and abuses the least-privilege flaw tied to /etc/boa/boa.conf to read configuration/credential data or operate with elevated authority beyond their role. Because attack complexity is high and no public exploit exists, this realistically requires a skilled attacker with specific knowledge of the affected firmware rather than opportunistic mass exploitation.
Remediation No vendor-released patch identified at time of analysis; the references point only to VulDB entries and submission records (https://vuldb.com/vuln/377214) rather than a fixed firmware release, so monitor https://www.totolink.net/ for a firmware update newer than 20260906 for the affected model. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: conduct asset inventory of all deployed TOTOLINK routers specifically models A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185R_T10, and EX200 running firmware version 20260906 or earlier. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-15271 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy