Lucene search
K

The vulnerability of the formIpv6Setup interface in the /bin/boa binary of the Totolink A3002R router’s microprogramming system allows a attacker to execute arbitrary code.

🗓️ 09 Oct 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 1 Views

Buffer overflow in Totolink A3002R formIpv6Setup; unchecked pppoe_dns1 enables code execution.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2025-25635
28 Feb 202519:27
circl
CNNVD
TOTOlink A3002R 安全漏洞
28 Feb 202500:00
cnnvd
CVE
CVE-2025-25635
28 Feb 202500:00
cve
Cvelist
CVE-2025-25635
28 Feb 202500:00
cvelist
EUVD
EUVD-2025-5933
3 Oct 202520:07
euvd
NVD
CVE-2025-25635
28 Feb 202519:15
nvd
OSV
CVE-2025-25635
28 Feb 202519:15
osv
Positive Technologies
PT-2025-9131
28 Feb 202500:00
ptsecurity
RedhatCVE
CVE-2025-25635
2 Mar 202500:21
redhatcve
Vulnrichment
CVE-2025-25635
28 Feb 202500:00
vulnrichment
Rows per page
Vulners
Node
totolinka3002rMatch1.1.1-b20200824.0128

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

09 Oct 2025 00:00Current
6.1Medium risk
Vulners AI Score6.1
CVSS 27.7
CVSS 38
EPSS0.00439
1