CVE-2025-8938 | TOTOLINK N350R 1.2.3-B20130826 Telnet Service /boafrm/formSysTel TelEnabled backdoor

A vulnerability was found in TOTOLINK N350R 1.2.3-B20130826 and classified as critical. This issue affects the function formSysTel of the file /boafrm/formSysTel of the component Telnet Service. The manipulation of the argument TelEnabled leads to backdoor.

The identification of this vulnerability is CVE-2025-8938. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.VulDB Recent EntriesRead More