CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2025/06/24 12:0 a.m.•2 views

TOTOLINK A3002RU /boafrm/formMultiAP file buffer overflow vulnerability

TOTOLINK A3002RU is a wireless router product from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3002RU version 3.0.0-B20230809.1615, which originates from a failure of the parameter submit-url in the file /boafrm/formMultiAP in the HTTP POST Request...

9CVSS8.6AI score0.01357EPSS

RedhatCVE•added 2025/06/23 8:38 a.m.•2 views

CVE-2025-6337

A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615/4.0.0-B20230531.1404. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the...

9CVSS7.4AI score0.01484EPSS

OSV•added 2025/06/20 12:15 p.m.•0 views

CVE-2025-6337

8.7CVSS6.5AI score0.01484EPSS

NVD•added 2025/06/20 12:15 p.m.•2 views

CVE-2025-6337

9CVSS0.01484EPSS

Cvelist•added 2025/06/20 12:0 p.m.•4 views

CVE-2025-6337 TOTOLINK A3002R/A3002RU HTTP POST Request formTmultiAP buffer overflow

9CVSS0.01484EPSS

CNNVD•added 2025/06/20 12:0 a.m.•1 views

TOTOLINK A3002RU和TOTOLINK A3002R 安全漏洞

TOTOLINK A3002RU and TOTOLINK A3002R are both products of China Gion Electronics TOTOLINK.TOTOLINK A3002RU is a wireless router product.TOTOLINK A3002R is a wireless router product. A buffer overflow vulnerability exists in the TOTOLINK A3002RU and TOTOLINK A3002R, which originates from the...

9CVSS8AI score0.01484EPSS

RedhatCVE•added 2025/06/19 5:19 a.m.•2 views

CVE-2025-6163

A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The...

9CVSS8.8AI score0.01357EPSS

RedhatCVE•added 2025/06/19 12:8 a.m.•2 views

CVE-2025-6148

A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. It has been rated as critical. This issue affects some unknown processing of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...

NVD•added 2025/06/17 5:15 a.m.•10 views

CVE-2025-6163

Vulnrichment•added 2025/06/17 5:0 a.m.•2 views

CVE-2025-6163 TOTOLINK A3002RU HTTP POST Request formMultiAP buffer overflow

9CVSS7.3AI score0.01357EPSS

Cvelist•added 2025/06/17 5:0 a.m.•9 views

CVE-2025-6163 TOTOLINK A3002RU HTTP POST Request formMultiAP buffer overflow

CVE•added 2025/06/17 5:0 a.m.•22 views

CVE-2025-6163

CVE-2025-6163 affects TOTOLINK A3002RU (3.0.0-B20230809.1615). The /boafrm/formMultiAP endpoint of the HTTP POST Request Handler accepts a manipulated submit-url input leading to a buffer overflow, enabling remote exploitation. Documents indicate the vulnerability is high severity with likely cod...

Exploits1References6Affected Software1

NVD•added 2025/06/17 1:15 a.m.•5 views

CVE-2025-6148

Vulnrichment•added 2025/06/17 12:0 a.m.•2 views

CVE-2025-6148 TOTOLINK A3002RU HTTP POST Request formSysLog buffer overflow

Cvelist•added 2025/06/17 12:0 a.m.•6 views

CVE-2025-6148 TOTOLINK A3002RU HTTP POST Request formSysLog buffer overflow

CVE•added 2025/06/17 12:0 a.m.•16 views

CVE-2025-6148

TOTOLINK A3002RU (version 3.0.0-B20230809.1615) contains a buffer overflow in the HTTP POST Request Handler’s /boafrm/formSysLog when processing the submit-url argument. CVE-2025-6148 is rated high/critical with remote exploitability. Several sources confirm that the vulnerability can be triggere...

Exploits1References6Affected Software1

CNNVD•added 2025/06/17 12:0 a.m.•1 views

TOTOLINK A3002RU 安全漏洞

9CVSS8.1AI score0.01357EPSS