3627 matches found
CVE-2025-4897
CVE-2025-4897 affects Tenda A15 routers (versions 15.13.07.09–15.13.07.13). The issue resides in the HTTP POST Request Handler for the endpoint at /goform/multimodalAdd, where improper handling leads to a buffer overflow. This could allow remote, unauthenticated attackers to execute arbitrary cod...
CVE-2025-4897 Tenda A15 HTTP POST Request multimodalAdd buffer overflow
A vulnerability was found in Tenda A15 15.13.07.09/15.13.07.13. It has been classified as critical. This affects an unknown part of the file /goform/multimodalAdd of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely...
CVE-2025-4732
A vulnerability classified as critical was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This vulnerability affects unknown code of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. The attack ca...
CVE-2025-4729
A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formMapDelDevice of the component HTTP POST Request Handler. The manipulation of the argument macstr lead...
CVE-2025-4731
A vulnerability classified as critical has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument servicetype/ipsubnet leads to buffer overflow. It is...
PT-2025-21865 · Tenda · Tenda Ac15
Name of the Vulnerable Software and Affected Versions: Tenda A15 versions 15.13.07.09 through 15.13.07.13 Description: A critical issue affects an unknown part of the file /goform/multimodalAdd of the component HTTP POST Request Handler, leading to buffer overflow. The manipulation can be initiat...
CVE-2025-4835
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formWlanRedirect of the component HTTP POST Request Handler. The manipulation of the argument...
CVE-2025-4835 TOTOLINK A702R/A3002R/A3002RU HTTP POST Request formWlanRedirect buffer overflow
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formWlanRedirect of the component HTTP POST Request Handler. The manipulation of the argument...
CVE-2025-4835
CVE-2025-4835 affects TOTOLINK A702R/A3002R/A3002RU running 3.0.0-B20230809.1615. The issue is in the HTTP POST Request Handler, specifically the unknown functionality of the file /boafrm/formWlanRedirect, where manipulating the argument redirect-url leads to a buffer overflow. It can be exploite...
CVE-2025-4835 TOTOLINK A702R/A3002R/A3002RU HTTP POST Request formWlanRedirect buffer overflow
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formWlanRedirect of the component HTTP POST Request Handler. The manipulation of the argument...
CVE-2025-4834
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been classified as critical. Affected is an unknown function of the file /boafrm/formSetLg of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow...
CVE-2025-4834
TOTOLINK TOTOLINK A702R/A3002R/A3002RU, version 3.0.0-B20230809.1615, contain a vulnerability in the HTTP POST Request Handler function /boafrm/formSetLg. The issue arises from improper manipulation of the submit-url parameter, which leads to a buffer overflow. The vulnerability is exploitable re...
CVE-2025-4834 TOTOLINK A702R/A3002R/A3002RU HTTP POST Request formSetLg buffer overflow
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been classified as critical. Affected is an unknown function of the file /boafrm/formSetLg of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow...
CVE-2025-4833
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615 and classified as critical. This issue affects some unknown processing of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow...
CVE-2025-4833 TOTOLINK A702R/A3002R/A3002RU HTTP POST Request formNtp buffer overflow
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615 and classified as critical. This issue affects some unknown processing of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow...
CVE-2025-4833
TOTOLINK A702R, A3002R and A3002RU (version 3.0.0-B20230809.1615) are affected by a critical vulnerability in the HTTP POST Request Handler, specifically in the processing of the /boafrm/formNtp file. Manipulation of the submit-url argument leads to a buffer overflow, with remote exploitation rep...
CVE-2025-4833 TOTOLINK A702R/A3002R/A3002RU HTTP POST Request formNtp buffer overflow
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615 and classified as critical. This issue affects some unknown processing of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow...
CVE-2025-4831
A vulnerability, which was classified as critical, was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formSiteSurveyProfile of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...
CVE-2025-4832 TOTOLINK A702R/A3002R/A3002RU HTTP POST Request formDosCfg buffer overflow
A vulnerability has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formDosCfg of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...
CVE-2025-4832
The CVE-2025-4832 issue affects TOTOLINK A702R, A3002R, and A3002RU (version 3.0.0-B20230809.1615). The vulnerability is in the /boafrm/formDosCfg HTTP POST Request Handler, where tampering with the submit-url argument causes a buffer overflow. Impact is remote code execution-like risk with high ...