PT-2025-26879 · Totolink · Totolink A702R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability exists in the TOTOLINK A702R router, specifically within the HTTP POST Request Handler component. The issue is a buffer overflow triggered by manipulating the...

CVE-2025-6568

A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

CVE-2025-6568

The CVE-2025-6568 affects TOTOLINK EX1200T, specifically the HTTP POST Request Handler at /boafrm/formIpv6Setup. The vulnerability arises from improper handling of the submit-url argument, causing a buffer overflow that can be triggered remotely. Affects version 4.1.2cu.5232_B20210713; exploitati...

CVE-2025-6568 TOTOLINK EX1200T HTTP POST Request formIpv6Setup buffer overflow

A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

CVE-2025-6568 TOTOLINK EX1200T HTTP POST Request formIpv6Setup buffer overflow

A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is an unknown function of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

CVE-2025-6565

A vulnerability was found in Netgear WNCE3001 1.0.0.50. It has been classified as critical. This affects the function httpd of the component HTTP POST Request Handler. The manipulation of the argument Host leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

CVE-2025-6565 Netgear WNCE3001 HTTP POST Request http_d stack-based overflow

A vulnerability was found in Netgear WNCE3001 1.0.0.50. It has been classified as critical. This affects the function httpd of the component HTTP POST Request Handler. The manipulation of the argument Host leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

CVE-2025-6565 Netgear WNCE3001 HTTP POST Request http_d stack-based overflow

A vulnerability was found in Netgear WNCE3001 1.0.0.50. It has been classified as critical. This affects the function httpd of the component HTTP POST Request Handler. The manipulation of the argument Host leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

Netgear WNCE3001 安全漏洞

The NETGEAR WNCE3001 is a dual-band wireless network adapter designed for smart TVs, Blu-ray players, and other devices that connect wirelessly via an Ethernet interface. The NETGEAR WNCE3001 suffers from a buffer overflow vulnerability that stems from the HTTP POST request handler mishandling th...

TOTOLINK A3002R /boafrm/formMultiAP file buffer overflow vulnerability

The TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3002R version 4.0.0-B20230531.1404 suffers from a buffer overflow vulnerability that originates from a failure of the parameter submit-url in the file /boafrm/formMultiAP in the HTTP POST Request Handle...

PT-2025-26734 · NetGear · Netgear Wnce3001

Name of the Vulnerable Software and Affected Versions: Netgear WNCE3001 version 1.0.0.50 Description: A critical vulnerability has been found, affecting the http d function of the HTTP POST Request Handler component. The manipulation of the Host argument leads to a stack-based buffer overflow. Th...

CVE-2025-6401

A vulnerability was found in TOTOLINK N300RH 6.1c.1390B20191101. It has been classified as problematic. This affects an unknown part of the file /boafrm/formFilter of the component HTTP POST Message Handler. The manipulation of the argument url leads to denial of service. The exploit has been...

CVE-2025-6336

A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. It has been classified as critical. Affected is an unknown function of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possibl...

CVE-2025-6393

A vulnerability was found in TOTOLINK A702R, A3002R, A3002RU and EX1200T 3.0.0-B20230809.1615/4.0.0-B20230531.1404/4.0.0-B20230721.1521/4.1.2cu.5232B20210713. It has been classified as critical. Affected is an unknown function of the file /boafrm/formIPv6Addr of the component HTTP POST Request...

CVE-2025-6399

A vulnerability, which was classified as critical, was found in TOTOLINK X15 1.0.0-B20230714.1105. Affected is an unknown function of the file /boafrm/formIPv6Addr of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to...

CVE-2025-6400

A vulnerability was found in TOTOLINK N300RH 6.1c.1390B20191101 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formPortFw of the component HTTP POST Message Handler. The manipulation of the argument servicetype leads to buffer overflow. The...

CVE-2025-6337

A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615/4.0.0-B20230531.1404. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the...

CVE-2025-6402

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...

CVE-2025-6402 TOTOLINK X15 HTTP POST Request formIpv6Setup buffer overflow

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...

CVE-2025-6402 TOTOLINK X15 HTTP POST Request formIpv6Setup buffer overflow

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...