CVE-2026-1158 Totolink LR350 POST Request cstecgi.cgi setWizardCfg buffer overflow

A security flaw has been discovered in Totolink LR350 9.3.5u.6369B20220309. This vulnerability affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Performing a manipulation of the argument ssid results in buffer overflow. The attack can be...

CVE-2026-1158

Totolink LR350 9.3.5u.6369_B20220309 is affected by CVE-2026-1158 due to a buffer overflow in the POST Request Handler’s setWizardCfg function (file /cgi-bin/cstecgi.cgi) when manipulating the ssid argument. The vulnerability can be triggered remotely, and public exploits exist. APT-like exposure...

VulnCheck KEV: CVE-2024-1781

A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.85220230719. It has been rated as critical. This issue affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component shttpd. The manipulation leads to command injection. The exploit has been disclosed to the public...

The vulnerability of the setWizardCfg() function (/cgi-bin/cstecgi.cgi) in the TOTOLINK T10 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setWizardCfg function /cgi-bin/cstecgi.cgi of the TOTOLINK T10 router software is related to the issue of data being written outside the buffer in memory when processing the parameter ssid5g. Exploiting this vulnerability allows a malicious actor to compromise the...

CVE-2025-6138

A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected by this vulnerability is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ssid5g leads to buffer overflow. The attack can ...

CVE-2025-6138 TOTOLINK T10 HTTP POST Request cstecgi.cgi setWizardCfg buffer overflow

A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected by this vulnerability is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ssid5g leads to buffer overflow. The attack can ...

TOTOLINK T10 安全漏洞

TOTOLINK T10 is a wireless network system router from China's Gion Electronics TOTOLINK. The TOTOLINK T10 suffers from a buffer overflow vulnerability, which originates from the parameter ssid5g in the function setWizardCfg in the file /cgi-bin/cstecgi.cgi that fails to correctly validate the...

CVE-2024-46419

TOTOLINK AC1200 T8 v4.1.5cu.861B20230220 has a buffer overflow vulnerability in the setWizardCfg function via the ssid5g parameter...

CVE-2024-37637

TOTOLINK A3700R V9.1.2u.616520211012 was discovered to contain a stack overflow via ssid5g in the function setWizardCfg...

CVE-2024-42545

TOTOLINK A3700R v9.1.2u.5822B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function...

TOTOLINK AC1200 setWizardCfg function buffer overflow vulnerability

TOTOLINK AC1200 is a dual-band Wi-Fi router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK AC1200 v4.1.5cu.861B20230220 version, which stems from the failure of the ssid5g parameter of the setWizardCfg function to correctly validate the length and...

CVE-2024-46419

TOTOLINK AC1200 T8 v4.1.5cu.861B20230220 has a buffer overflow vulnerability in the setWizardCfg function via the ssid5g parameter...

CVE-2024-46419

TOTOLINK AC1200 T8 v4.1.5cu.861B20230220 has a buffer overflow vulnerability in the setWizardCfg function via the ssid5g parameter...

CVE-2024-46419

CVE-2024-46419 affects TOTOLINK AC1200 T8 shown as v4.1.5cu.861_B20230220. The vulnerability is a buffer overflow in the setWizardCfg function invoked with the ssid5g parameter, indicating improper input validation of this field. The issue is kernel/firmware level, with network-based access (ATT&...

CVE-2024-46419

TOTOLINK AC1200 T8 v4.1.5cu.861B20230220 has a buffer overflow vulnerability in the setWizardCfg function via the ssid5g parameter...

CVE-2024-42545

TOTOLINK A3700R v9.1.2u.5822B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function...

PT-2024-30007 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.5822 B20200513 Description: The issue is a buffer overflow vulnerability in the ssid parameter within the setWizardCfg function. This vulnerability can be exploited, potentially allowing unauthorized access or...

TOTOLINK A3700R 安全漏洞

The TOTOLINK A3700R is a wireless router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3700R v9.1.2u.5822B20200513, which stems from the ssid parameter of the setWizardCfg function failing to correctly validate the length and size of the input dat...

CVE-2024-42545

TOTOLINK A3700R v9.1.2u.5822B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function...

CVE-2024-42545

TOTOLINK A3700R v9.1.2u.5822B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function...