Lucene search
K

173 matches found

CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

TOTOLINK A950RG Stack Buffer Overflow Vulnerability

The TOTOLINK A950RG is an ultra-generation Giga wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A950RG suffers from a stack buffer overflow vulnerability that stems from insufficient validation of the length of the comment parameter in the setIpQosRules interface, which can b...

9.8CVSS6.2AI score0.00439EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/04 3:15 a.m.5 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS5.7AI score0.00628EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/04 3:15 a.m.16 views

CVE-2025-67186

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cstemodules/firewall.so. The vulnerability occurs because the url parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow,...

9.8CVSS6.6AI score0.00694EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/04 3:15 a.m.17 views

CVE-2025-67187

A stack-based buffer overflow vulnerability was identified in TOTOLINK A950RG V4.1.2cu.5204B20210112. The flaw exists in the setIpQosRules interface of /lib/cstemodules/firewall.so where the comment parameter is not properly validated for length...

9.8CVSS5.7AI score0.00439EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/04 3:15 a.m.4 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.5CVSS6.1AI score0.00425EPSS
Exploits1References1
OSV
OSV
added 2026/02/03 6:16 p.m.5 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.5CVSS6.3AI score0.00425EPSS
Exploits1References1
NVD
NVD
added 2026/02/03 6:16 p.m.6 views

CVE-2025-67186

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cstemodules/firewall.so. The vulnerability occurs because the url parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow,...

9.8CVSS0.00694EPSS
Exploits1References1
NVD
NVD
added 2026/02/03 6:16 p.m.7 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS0.00628EPSS
Exploits1References1
NVD
NVD
added 2026/02/03 6:16 p.m.5 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.5CVSS0.00425EPSS
Exploits1References1
OSV
OSV
added 2026/02/03 6:16 p.m.6 views

CVE-2025-67186

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cstemodules/firewall.so. The vulnerability occurs because the url parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow,...

9.8CVSS6.6AI score0.00694EPSS
Exploits1References1
OSV
OSV
added 2026/02/03 6:16 p.m.6 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS6.2AI score0.00628EPSS
Exploits1References1
NVD
NVD
added 2026/02/03 6:16 p.m.6 views

CVE-2025-67187

A stack-based buffer overflow vulnerability was identified in TOTOLINK A950RG V4.1.2cu.5204B20210112. The flaw exists in the setIpQosRules interface of /lib/cstemodules/firewall.so where the comment parameter is not properly validated for length...

9.8CVSS0.00439EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/02/03 12:0 a.m.26 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

0.00628EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.6 views

PT-2026-5954

Name of the Vulnerable Software and Affected Versions TOTOLINK A950RG version 4.1.2cu.5204 B20210112 Description The software contains a buffer overflow issue in the setUrlFilterRules interface of /lib/cste modules/firewall.so. The issue is due to insufficient validation of the length of the url...

9.8CVSS6.8AI score0.00694EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/03 12:0 a.m.3 views

CVE-2025-67186

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cstemodules/firewall.so. The vulnerability occurs because the url parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow,...

6.6AI score0.00694EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.7 views

PT-2026-5957

Name of the Vulnerable Software and Affected Versions TOTOLINK A950RG version 4.1.2cu.5204 B20210112 Description A buffer overflow issue exists in the setParentalRules interface. The urlKeyword parameter does not undergo proper validation. The system concatenates multiple user-supplied values int...

6.5CVSS6.3AI score0.00425EPSS
Exploits1References3
EUVD
EUVD
added 2026/02/03 12:0 a.m.4 views

EUVD-2025-206713

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

6AI score0.00628EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:0 a.m.3 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.3AI score0.00425EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/02/03 12:0 a.m.27 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

0.00425EPSS
Exploits1References1
EUVD
EUVD
added 2026/02/03 12:0 a.m.5 views

EUVD-2025-206722

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.3AI score0.00425EPSS
Exploits1References1
Rows per page
Query Builder