CVE-2025-5507 TOTOLINK A3002RU MAC Filtering Page cross site scripting

🗓️ 03 Jun 2025 15:31:06Reported by VulDBType

Vulnerability in TOTOLINK A3002RU allows remote cross site scripting via MAC Filtering Page manipulation.

Reporter	Title	Published	Views	Family All 11
BDU FSTEC	The vulnerability of the MAC filtering configuration of the Firewall module in TOTOLINK A3002RU microprogrammed router software allows attackers to perform cross-site scripting (XSS) attacks.	6 Jun 202500:00	–	bdu_fstec
Circl	CVE-2025-5507	3 Jun 202516:36	–	circl
CNNVD	TOTOLINK A3002RU 代码注入漏洞	3 Jun 202500:00	–	cnnvd
CNVD	TOTOLINK A3002RU MAC Filtering Page Component Cross-Site Scripting Vulnerability	11 Jun 202500:00	–	cnvd
CVE	CVE-2025-5507	3 Jun 202515:31	–	cve
EUVD	EUVD-2025-16755	3 Oct 202520:07	–	euvd
NVD	CVE-2025-5507	3 Jun 202516:15	–	nvd
OSV	CVE-2025-5507	3 Jun 202516:15	–	osv
Positive Technologies	PT-2025-23637 · Totolink · Totolink A3002Ru	26 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-5507	5 Jun 202516:12	–	redhatcve

[
  {
    "vendor": "TOTOLINK",
    "product": "A3002RU",
    "versions": [
      {
        "version": "2.1.1-B20230720.1011",
        "status": "affected"
      }
    ],
    "modules": [
      "MAC Filtering Page"
    ]
  }
]

Source	Link
totolink	www.totolink.net/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/fizz-is-on-the-way/Iot_vuls/tree/main/A3002RU_V2/XSS_Mac_filtering

03 Jun 2025 15:31Current

CVSS 3.12.4

CVSS 32.4

CVSS 23.3

CVSS 44.8

EPSS0.00132