Lucene search
K

41 matches found

BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.6 views

The vulnerability of the formIpv6Setup function in the Totolink A3002R router’s microprogramming software allows a attacker to compromise the confidentiality and integrity of the protected information.

The vulnerability of the formIpv6Setup function in the Totolink A3002R router’s microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of the protected information...

5.4CVSS5.8AI score0.03563EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2025/05/13 3:15 p.m.17 views

CVE-2025-45867

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the staticdns1 parameter in the formIpv6Setup interface...

5.4CVSS0.03563EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.3 views

PT-2025-20916 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 4.0.0-B20230531.1404 Description: A buffer overflow issue was discovered via the static dns1 parameter in the "formIpv6Setup" interface. Recommendations: For TOTOLINK A3002R version 4.0.0-B20230531.1404, avoid using th...

5.4CVSS6.5AI score0.03563EPSS
Exploits1References6
CVE
CVE
added 2025/05/13 12:0 a.m.41 views

CVE-2025-45867

CVE-2025-45867 affects TOTOLINK A3002R v4.0.0-B20230531.1404. A buffer overflow is triggered in the formIpv6Setup interface via the static_dns1 parameter, caused by insufficient input length validation. Reported by multiple sources; CVSSv3.1 base score 5.4 (Medium) with Adjacent attack vector, Lo...

5.4CVSS8AI score0.03563EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2025/05/13 12:0 a.m.3 views

TOTOLINK A3002R 安全漏洞

TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3002R suffers from a buffer overflow vulnerability that originates from the failure of the staticdns1 parameter in the formIpv6Setup interface to correctly validate the length size of the input data, and no...

5.4CVSS7.2AI score0.03563EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/03/02 12:23 a.m.15 views

CVE-2025-25610

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the staticgw parameter in the formIpv6Setup interface of /bin/boa...

8CVSS7.3AI score0.00252EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/02 12:21 a.m.15 views

CVE-2025-25635

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the pppoedns1 parameter in the formIpv6Setup interface of /bin/boa...

8CVSS7.3AI score0.00392EPSS
Exploits1References1
OSV
OSV
added 2025/02/28 7:15 p.m.3 views

CVE-2025-25610

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the staticgw parameter in the formIpv6Setup interface of /bin/boa...

8CVSS6.1AI score0.00252EPSS
Exploits0References1
NVD
NVD
added 2025/02/28 7:15 p.m.24 views

CVE-2025-25635

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the pppoedns1 parameter in the formIpv6Setup interface of /bin/boa...

8CVSS0.00392EPSS
Exploits1References1
OSV
OSV
added 2025/02/28 7:15 p.m.4 views

CVE-2025-25635

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the pppoedns1 parameter in the formIpv6Setup interface of /bin/boa...

8CVSS6.1AI score0.00392EPSS
Exploits1References1
NVD
NVD
added 2025/02/28 7:15 p.m.32 views

CVE-2025-25609

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the staticipv6 parameter in the formIpv6Setup interface of /bin/boa...

8CVSS0.00252EPSS
Exploits0References1
OSV
OSV
added 2025/02/28 7:15 p.m.4 views

CVE-2025-25609

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the staticipv6 parameter in the formIpv6Setup interface of /bin/boa...

8CVSS6.1AI score0.00252EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/28 12:0 a.m.5 views

CVE-2025-25610

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the staticgw parameter in the formIpv6Setup interface of /bin/boa...

7.7AI score0.00252EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/28 12:0 a.m.5 views

PT-2025-9131

Name of the Vulnerable Software and Affected Versions: TOTOlink A3002R version V1.1.1-B20200824.0128 Description: The issue arises from a buffer overflow due to improper input validation of the pppoe dns1 parameter in the formIpv6Setup interface of the /bin/boa endpoint. Recommendations: For...

8CVSS6.6AI score0.00392EPSS
Exploits1References7
CNVD
CNVD
added 2023/10/27 12:0 a.m.3 views

TOTOLINK X2000R Gh formIpv6Setup Method Stack Buffer Overflow Vulnerability

TOTOLINK X2000R Gh is a Wi-Fi6 router from China's Gion Electronics TOTOLINK. The TOTOLINK X2000R Gh suffers from a stack buffer overflow vulnerability that stems from the formIpv6Setup method failing to properly validate the length size of the input data, which can be exploited by an attacker to...

9.8CVSS8.2AI score0.01027EPSS
Exploits1References1
NVD
NVD
added 2023/10/25 6:17 p.m.14 views

CVE-2023-46541

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formIpv6Setup...

9.8CVSS9.7AI score0.01027EPSS
Exploits1References2
OSV
OSV
added 2023/10/25 6:17 p.m.2 views

CVE-2023-46541

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formIpv6Setup...

9.8CVSS5.8AI score0.01027EPSS
Exploits1References2
Prion
Prion
added 2023/10/25 6:17 p.m.18 views

Stack overflow

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formIpv6Setup...

7.5CVSS9.6AI score0.01027EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/25 12:0 a.m.4 views

PT-2023-30071 · Totolink · Totolink X2000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X2000R Gh version 1.0.0-B20230221.0948.web Description: A stack overflow issue was discovered in the function formIpv6Setup. Recommendations: For version 1.0.0-B20230221.0948.web, as a temporary workaround, consider disabling the...

9.8CVSS7.7AI score0.01027EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/10/25 12:0 a.m.17 views

CVE-2023-46541

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formIpv6Setup...

9.9AI score0.01027EPSS
Exploits1References2
Rows per page
Query Builder