Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-43431

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00704EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/27 12:0 a.m.4 views

TOTOLINK A3002R /boafrm/formWlanMultipleAP file stack buffer overflow vulnerability

TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3002R suffers from a stack buffer overflow vulnerability, which originates from the parameter submit-url in the file /boafrm/formWlanMultipleAP failing to correctly validate the length and size of the input...

9CVSS9.1AI score0.00759EPSS
Exploits1References1
CNVD
CNVD
added 2025/06/24 12:0 a.m.4 views

TOTOLINK A3002R /boafrm/formMultiAP file buffer overflow vulnerability

The TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3002R version 4.0.0-B20230531.1404 suffers from a buffer overflow vulnerability that originates from a failure of the parameter submit-url in the file /boafrm/formMultiAP in the HTTP POST Request Handle...

9CVSS8.7AI score0.00761EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/06/22 5:31 p.m.6 views

CVE-2025-6486 TOTOLINK A3002R formWlanMultipleAP stack-based overflow

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been declared as critical. This vulnerability affects the function formWlanMultipleAP of the file /boafrm/formWlanMultipleAP. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack can ...

9CVSS0.00759EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/22 5:31 p.m.4 views

CVE-2025-6486 TOTOLINK A3002R formWlanMultipleAP stack-based overflow

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been declared as critical. This vulnerability affects the function formWlanMultipleAP of the file /boafrm/formWlanMultipleAP. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack can ...

9CVSS8.9AI score0.00759EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/06/22 12:0 a.m.6 views

PT-2025-26564 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 1.1.1-B20200824.0128 Description: A critical vulnerability was found in the TOTOLINK A3002R, affecting the function formWlanMultipleAP of the file /boafrm/formWlanMultipleAP. The manipulation of the argument submit-url...

9CVSS8.6AI score0.00759EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2025/06/19 12:0 a.m.5 views

PT-2025-26563 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 1.1.1-B20200824.0128 Description: A critical issue affects the function formWlSiteSurvey of the file /boafrm/formWlSiteSurvey. The manipulation of the argument wlanif leads to os command injection. It is possible to...

6.5CVSS6.8AI score0.05956EPSS
Exploits1References15
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.24 views

The vulnerability of the submit-url function in the file /boafrm/formReflashClientTbl of the HTTP POST Request Handler component of the microprogramming software for TOTOLINK routers A702R, A3002R, and A3002RU allows a perpetrator to execute arbitrary code.

The vulnerability of the submit-url function in the /boafrm/formReflashClientTbl file of the HTTP POST Request Handler component of the microprogramming software for TOTOLINK A702R, A3002R, and A3002RU routers is related to the copying of buffers without checking the size of the input data...

9CVSS8AI score0.00661EPSS
Exploits0References6Affected Software3
CNNVD
CNNVD
added 2025/05/15 12:0 a.m.2 views

TOTOLINK A3002RU和TOTOLINK A3002R 安全漏洞

The TOTOLINK A3002R and A3002RU are routers from TOTOLINK that support a wide range of network features and services. The TOTOLINK A3002R and A3002RU are vulnerable to a buffer overflow vulnerability that originates from incorrect manipulation of the /boafrm/formPortFw file of the component HTTP...

9CVSS7.3AI score0.00661EPSS
Exploits0References6
CVE
CVE
added 2025/05/13 12:0 a.m.47 views

CVE-2025-45864

CVE-2025-45864 concerns TOTOLINK A3002R v4.0.0-B20230531.1404. A buffer overflow is triggered via the addrPoolStart parameter in the formDhcpv6s interface, due to a failure to properly validate input length. Public descriptions consistently name this device and version, but do not provide a confi...

5.4CVSS7.9AI score0.03402EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/13 12:0 a.m.9 views

CVE-2025-45867

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the staticdns1 parameter in the formIpv6Setup interface...

8AI score0.03402EPSS
Exploits1References2
Rows per page
Query Builder