Lucene search
China National Vulnerability DatabaseCNVD-2024-04918HistoryJan 11, 2024 - 12:00 a.m.
TOTOLINK N350RT v8 Parameter Buffer Overflow Vulnerability
2024-01-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
totolink
n350rt
buffer overflow
vulnerability
cgi-bin
login action
remote attacker
arbitrary code
denial-of-service
cnvd
The TOTOLINK N350RT is a small home router from Chinaβs Gion Electronics (TOTOLINK). The TOTOLINK N350RT version 9.3.5u.6139_B20201216 suffers from a buffer overflow vulnerability that originates from the parameter v8 of the main function of the file /cgi-bin/cstecgi.cgi?action=login that fails to correctly validate the length size of the input data, which can be exploited by a remote attacker on the system to could be exploited by a remote attacker to execute arbitrary code on the system or cause a denial-of-service attack.
Related
cvelist
cvelist
CVE-2023-7214 Totolink N350RT HTTP POST Request main stack-based overflow
2024-01-07 20:00:05
cve
cve
CVE-2023-7214
2024-01-07 20:15:47
prion
prion
Stack overflow
2024-01-07 20:15:00
nvd
nvd
CVE-2023-7214
2024-01-07 20:15:47