CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2025/06/17 12:0 a.m.•1 views

TOTOLINK EX1200T formReflashClientTbl Buffer Overflow Vulnerability

The TOTOLINK EX1200T is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK EX1200T suffers from a buffer overflow vulnerability that originates in the file /boafrm/formReflashClientTbl in the HTTP POST Request Handler component, which can be exploited by an attacker to execute...

9CVSS8.2AI score0.01086EPSS

Exploits1References1

CNVD•added 2025/06/17 12:0 a.m.•1 views

TOTOLINK EX1200T /boafrm/formWsc File Buffer Overflow Vulnerability

The TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1200T suffers from a buffer overflow vulnerability that originates from the failure of the file /boafrm/formWsc in the HTTP POST Request Handler component to properly validate the length and size...

9CVSS8.6AI score0.00843EPSS

Exploits1References1

CNNVD•added 2025/06/17 12:0 a.m.•3 views

D-Link DIR-665 安全漏洞

The D-Link DIR-665 is a high-performance wireless router that belongs to D-Link's flagship product. A buffer overflow vulnerability exists in the D-Link DIR-665. The vulnerability stems from a stack buffer overflow in the function subAC78 in the HTTP POST Request Handler component, which can be...

9CVSS9.1AI score0.0081EPSS

Exploits1References7

Positive Technologies•added 2025/06/17 12:0 a.m.•5 views

PT-2025-27044 · Linksys · Linksys E8450

Name of the Vulnerable Software and Affected Versions: Linksys E8450 versions up to 1.2.00.360516 Description: A critical vulnerability was found in the Linksys E8450, affecting the set device language function of the portal.cgi file in the HTTP POST Request Handler component. The manipulation of...

9CVSS8.7AI score0.0064EPSS

Exploits0References13

Positive Technologies•added 2025/06/17 12:0 a.m.•2 views

PT-2025-25622 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 4.0.0-B20230531.1404 Description: A critical issue has been found in the HTTP POST Request Handler component, specifically affecting the /boafrm/formMultiAP file. The manipulation of the submit-url argument leads to a...

9CVSS8.6AI score0.00761EPSS

Exploits1References12

Cvelist•added 2025/06/16 11:31 p.m.•13 views

CVE-2025-6146 TOTOLINK X15 HTTP POST Request formSysLog buffer overflow

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been classified as critical. This affects an unknown part of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

9CVSS0.01033EPSS

Vulnrichment•added 2025/06/16 11:31 p.m.•4 views

CVE-2025-6146 TOTOLINK X15 HTTP POST Request formSysLog buffer overflow

9CVSS8.9AI score0.01033EPSS

CVE•added 2025/06/16 11:31 p.m.•32 views

CVE-2025-6146

CVE-2025-6146 affects TOTOLINK X15 v1.0.0-B20230714.1105. The vulnerability is a buffer overflow in the /boafrm/formSysLog HTTP POST Request Handler caused by improper handling of the submit-url argument, with remote exploitation possible and the exploit disclosed publicly. Multiple sources corro...

9CVSS8.9AI score0.01033EPSS

OSV•added 2025/06/16 11:15 p.m.•1 views

CVE-2025-6144

A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formSysCmd of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...

8.7CVSS6.3AI score0.00761EPSS

OSV•added 2025/06/16 11:15 p.m.•2 views

CVE-2025-6145

A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The...

8.7CVSS6.5AI score0.00761EPSS

NVD•added 2025/06/16 11:15 p.m.•12 views

CVE-2025-6145

NVD•added 2025/06/16 11:15 p.m.•9 views

CVE-2025-6143

A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

9CVSS0.00758EPSS

Exploits1References5

NVD•added 2025/06/16 11:15 p.m.•25 views

CVE-2025-6144

Cvelist•added 2025/06/16 11:0 p.m.•10 views

CVE-2025-6145 TOTOLINK EX1200T HTTP POST Request formSysLog buffer overflow

CVE•added 2025/06/16 11:0 p.m.•32 views

CVE-2025-6145

CVE-2025-6145 affects TOTOLINK EX1200T (firmware 4.1.2cu.5232_B20210713). The flaw lies in the HTTP POST Request Handler, specifically the /boafrm/formSysLog endpoint, where the submit-url parameter can be manipulated to trigger a buffer overflow. This can allow remote exploitation and arbitrary ...

9CVSS8.9AI score0.00761EPSS

Vulnrichment•added 2025/06/16 11:0 p.m.•5 views

CVE-2025-6145 TOTOLINK EX1200T HTTP POST Request formSysLog buffer overflow

9CVSS8.9AI score0.00761EPSS

Vulnrichment•added 2025/06/16 11:0 p.m.•3 views

CVE-2025-6144 TOTOLINK EX1200T HTTP POST Request formSysCmd buffer overflow

9CVSS7.3AI score0.00761EPSS

CVE•added 2025/06/16 11:0 p.m.•34 views

CVE-2025-6144

CVE-2025-6144 affects TOTOLINK EX1200T, specifically a buffer overflow in the /boafrm/formSysCmd endpoint of the HTTP POST Request Handler when processing the submit-url parameter. The issue is triggered by insufficient validation of the submitted data, allowing remote exploitation. Impact is des...

9CVSS9AI score0.00761EPSS

Cvelist•added 2025/06/16 11:0 p.m.•19 views

CVE-2025-6144 TOTOLINK EX1200T HTTP POST Request formSysCmd buffer overflow