The vulnerability of the formMapDelDevice function in the Totolink A3002R router’s microprogramming software allows a intruder to compromise the confidentiality and integrity of the protected information.

The vulnerability of the formMapDelDevice function in the Totolink A3002R router’s microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker operating remotely to compromise the confidentiality and...

TOTOLINK A3002R formMapDelDevice interface macstr parameter buffer overflow vulnerability

TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3002R suffers from a buffer overflow vulnerability that arises from the macstr parameter in the formMapDelDevice interface failing to properly validate the length and size of the input data, which can be...

CVE-2025-45863

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the macstr parameter in the formMapDelDevice interface...

CVE-2025-45859

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface...

TOTOLINK A3002RU和TOTOLINK A3002R 安全漏洞

The TOTOLINK A3002R and A3002RU are routers from TOTOLINK that support a wide range of network features and services. The TOTOLINK A3002R and A3002RU are vulnerable to a command injection vulnerability that originates from misuse of the /boafrm/formMapDelDevice file of the HTTP POST request...

CVE-2025-45863

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the macstr parameter in the formMapDelDevice interface...

CVE-2025-45859

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface...

CVE-2025-45863

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the macstr parameter in the formMapDelDevice interface...

TOTOLINK A3002R 安全漏洞

TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3002R suffers from a buffer overflow vulnerability that arises from the macstr parameter in the formMapDelDevice interface failing to properly validate the length and size of the input data, which can be...

CVE-2025-45859

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface...

CVE-2025-45863

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the macstr parameter in the formMapDelDevice interface...

CVE-2025-45859

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface...

CVE-2025-45859

TOTOLINK A3002R firmware version 4.0.0-B20230531.1404 contains a buffer overflow in the formMapDelDevice interface, triggered by the bandstr parameter (no input validation of input length). Public sources describe potential impact to confidentiality and integrity, with CVSSv3.1 base score 5.4 (Me...

CVE-2025-45863

TOTOLINK A3002R (firmware 4.0.0-B20230531.1404) is affected by a buffer overflow in the formMapDelDevice interface caused by improper validation of the macstr parameter. This vulnerability could allow arbitrary code execution or a denial of service, as described across multiple sources (CNVD, NVD...

PT-2025-21032 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 4.0.0-B20230531.1404 Description: A buffer overflow issue was discovered via the macstr parameter in the "formMapDelDevice" interface. Recommendations: For TOTOLINK A3002R version 4.0.0-B20230531.1404, avoid using the...

The vulnerability of the formMapDelDevice function in the microprogramming software for TOTOLINK A3002R allows a intruder to execute arbitrary commands.

The vulnerability of the formMapDelDevice function in the microprogrammed software of TOTOLINK A3002R routers lies in the lack of measures to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the formMapDelDevice() function (boafrm/formMapDelDevice) in the Totolink X2000R router software allows a hacker to execute arbitrary commands.

The vulnerability of the formMapDelDevice function boafrm/formMapDelDevice in the Totolink X2000R router software is related to the lack of data cleaning measures at the control level when processing the macstr parameter. Exploiting this vulnerability allows an attacker to execute arbitrary...

CVE-2024-0579

A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452. Affected by this vulnerability is the function formMapDelDevice of the file /boafrm/formMapDelDevice. The manipulation of the argument macstr leads to command injection. The attack can be launched remotely...

TOTOLINK X2000R 命令注入漏洞

TOTOLINK X2000R is a wireless router from China's Gion Electronics TOTOLINK. A command injection vulnerability exists in TOTOLINK X2000R version 1.0.0-B20221212.1452, which stems from the macstr parameter of the formMapDelDevice function of the /boafrm/formMapDelDevice file failing to correctly...

CVE-2023-46558

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMapDelDevice...