3 matches found
CVE-2025-5902
creationtimestamp| type| source ---|---|--- 2025-06-09 23:32:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17807 2025-06-10 01:43:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lr7re226js2k...
CVE-2025-5902
The CVE-2025-5902 entry concerns TOTOLINK T10 firmware version 4.1.8cu.5207. The vulnerability lies in the POST Request Handler’s setUpgradeFW function, specifically in processing the slaveIpList parameter in /cgi-bin/cstecgi.cgi, where a buffer overflow can be triggered. Publicly disclosed explo...
CVE-2025-5902 TOTOLINK T10 POST Request cstecgi.cgi setUpgradeFW buffer overflow
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207 and classified as critical. This issue affects the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument slaveIpList leads to buffer overflow. The attack may be initiate...