3 matches found
TOTOLINK T6 dest parameter buffer overflow vulnerability
TOTOLINK T6 is a wireless dual-band router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK T6 version 4.1.5cu.748B20211015, which originates from the parameter dest of the recvSlaveStaInfo function of the MQTT service failing to correctly validate the...
The vulnerability of the recvSlaveStaInfo() function in the MQTT service of the TOTOLink T6 microprogramming system allows a attacker to execute arbitrary code.
The vulnerability of the recvSlaveStaInfo function in the MQTT service of the TOTOLink T6 mesh-system’s microprogramming system is related to the issue of the operation going beyond the buffer in memory when processing the dest parameter. Exploiting this vulnerability allows a remote attacker to...
CVE-2025-7837
A vulnerability was found in TOTOLINK T6 4.1.5cu.748B20211015 and classified as critical. Affected by this issue is the function recvSlaveStaInfo of the component MQTT Service. The manipulation of the argument dest leads to buffer overflow. The attack may be launched remotely. The exploit has bee...