Lucene search
+L

141 matches found

nvd
nvd
added 2026/07/09 10:17 p.m.11 views

CVE-2026-15271

A security vulnerability has been detected in TOTOLINK A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185RT10 and EX200 up to 20260906. Affected by this issue is some unknown functionality of the file /etc/boa/boa.conf of the component Web Interface. The manipulation leads to least privilege...

7.7CVSS0.00407EPSS
Exploits0References12
cvelist
cvelist
added 2026/07/09 9:30 p.m.29 views

CVE-2026-15271 TOTOLINK EX200 Web boa.conf least privilege violation

A security vulnerability has been detected in TOTOLINK A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185RT10 and EX200 up to 20260906. Affected by this issue is some unknown functionality of the file /etc/boa/boa.conf of the component Web Interface. The manipulation leads to least privilege...

7.7CVSS0.00407EPSS
Exploits0References12
cnvd
cnvd
added 2026/02/11 12:0 a.m.3 views

TOTOLINK A950RG Stack Buffer Overflow Vulnerability

The TOTOLINK A950RG is an ultra-generation Giga wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A950RG suffers from a stack buffer overflow vulnerability that stems from insufficient validation of the length of the comment parameter in the setIpQosRules interface, which can b...

9.8CVSS6.2AI score0.00439EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/02/04 3:15 a.m.5 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS5.7AI score0.00628EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/02/04 3:15 a.m.19 views

CVE-2025-67186

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cstemodules/firewall.so. The vulnerability occurs because the url parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow,...

9.8CVSS6.6AI score0.00694EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/02/04 3:15 a.m.19 views

CVE-2025-67187

A stack-based buffer overflow vulnerability was identified in TOTOLINK A950RG V4.1.2cu.5204B20210112. The flaw exists in the setIpQosRules interface of /lib/cstemodules/firewall.so where the comment parameter is not properly validated for length...

9.8CVSS5.7AI score0.00439EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/02/04 3:15 a.m.4 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.5CVSS6.1AI score0.00425EPSS
Exploits1References1
osv
osv
added 2026/02/03 6:16 p.m.5 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.5CVSS6.3AI score0.00425EPSS
Exploits1References1
osv
osv
added 2026/02/03 6:16 p.m.6 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS6.2AI score0.00628EPSS
Exploits1References1
nvd
nvd
added 2026/02/03 6:16 p.m.7 views

CVE-2025-67186

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cstemodules/firewall.so. The vulnerability occurs because the url parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow,...

9.8CVSS0.00694EPSS
Exploits1References1
nvd
nvd
added 2026/02/03 6:16 p.m.7 views

CVE-2025-67187

A stack-based buffer overflow vulnerability was identified in TOTOLINK A950RG V4.1.2cu.5204B20210112. The flaw exists in the setIpQosRules interface of /lib/cstemodules/firewall.so where the comment parameter is not properly validated for length...

9.8CVSS0.00439EPSS
Exploits1References1
nvd
nvd
added 2026/02/03 6:16 p.m.9 views

CVE-2025-67188

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

9.8CVSS0.00628EPSS
Exploits1References1
nvd
nvd
added 2026/02/03 6:16 p.m.7 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.5CVSS0.00425EPSS
Exploits1References1
osv
osv
added 2026/02/03 6:16 p.m.6 views

CVE-2025-67186

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cstemodules/firewall.so. The vulnerability occurs because the url parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow,...

9.8CVSS6.6AI score0.00694EPSS
Exploits1References1
euvd
euvd
added 2026/02/03 12:0 a.m.6 views

EUVD-2025-206722

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.3AI score0.00425EPSS
Exploits1References1
euvd
euvd
added 2026/02/03 12:0 a.m.5 views

EUVD-2025-206712

A stack-based buffer overflow vulnerability was identified in TOTOLINK A950RG V4.1.2cu.5204B20210112. The flaw exists in the setIpQosRules interface of /lib/cstemodules/firewall.so where the comment parameter is not properly validated for length...

9.8CVSS5.7AI score0.00439EPSS
Exploits1References1
euvd
euvd
added 2026/02/03 12:0 a.m.7 views

EUVD-2025-206713

A buffer overflow vulnerability exists in TOTOLINK A950RG V4.1.2cu.5204B20210112. The issue resides in the setRadvdCfg interface of the /lib/cstemodules/ipv6.so module. The function fails to properly validate the length of the user-controlled radvdinterfacename parameter, allowing remote attacker...

6AI score0.00628EPSS
Exploits1References1
cnnvd
cnnvd
added 2026/02/03 12:0 a.m.9 views

TOTOLINK A950RG 安全漏洞

TOTOLINK A950RG is a super-generation Giga wireless router produced by TOTOLINK Corporation. The TOTOLINK A950RG V4.1.2cu.5204B20210112 version contains a security vulnerability. This vulnerability stems from insufficient validation of the url parameter length during the use of the...

9.8CVSS6.2AI score0.00694EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2026/02/03 12:0 a.m.3 views

CVE-2025-67186

TOTOLINK A950RG V4.1.2cu.5204B20210112 contains a buffer overflow vulnerability in the setUrlFilterRules interface of /lib/cstemodules/firewall.so. The vulnerability occurs because the url parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow,...

6.6AI score0.00694EPSS
Exploits1References1
attackerkb
attackerkb
added 2026/02/03 12:0 a.m.3 views

CVE-2025-67189

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. ...

6.3AI score0.00425EPSS
Exploits1References2
Rows per page
Query Builder