CVE-2025-15230

The CVE-2025-15230 entry affects Tenda M3 1.0.0.13(4903). The vulnerability resides in the /goform/setVlanPolicyData::formSetVlanPolicy function, where manipulating the qvlan_truck_port argument causes a heap-based buffer overflow. Remote exploitation is possible, and an exploit has been publicly...

The vulnerability of the /boafrm/formVlan function in TOTOLINK N150RT router microprogramming software allows a perpetrator to execute arbitrary code.

The vulnerability of the /boafrm/formVlan function in TOTOLINK N150RT router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

CVE-2025-3990

A vulnerability, which was classified as critical, has been found in TOTOLINK N150RT 3.4.0-B20190525. Affected by this issue is some unknown functionality of the file /boafrm/formVlan. The manipulation of the argument submit-url leads to buffer overflow. The attack may be launched remotely. The...

TOTOLINK N150RT 安全漏洞

The TOTOLINK N150RT is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK N150RT suffers from a buffer overflow vulnerability that originates from the parameter submit-url in file /boafrm/formVlan failing to properly validate the length and size of the input data, which can be...