16 matches found
CVE-2026-6168
Summary: CVE-2026-6168 affects TOTOLINK A7000R (up to 9.1.0u.6115). The vulnerable component is the function setWiFiEasyGuestCfg in the file /cgi-bin/cstecgi.cgi , where improper handling of the ssid5g argument leads to a stack-based buffer overflow . This flaw enables remote exploitation; the ex...
CVE-2026-2180
A vulnerability was identified in Tenda RX3 16.03.13.11. Affected is an unknown function of the file /goform/fastsettingwifiset. Such manipulation of the argument ssid5g leads to stack-based buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used...
CVE-2026-2180
A vulnerability was identified in Tenda RX3 16.03.13.11. Affected is an unknown function of the file /goform/fastsettingwifiset. Such manipulation of the argument ssid5g leads to stack-based buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used...
TOTOLINK A7000R sub_4222E0 function stack buffer overflow vulnerability
TOTOLINK A7000R is a wireless router from China's Gion Electronics TOTOLINK that supports WiFi7 technology for home or small business network environments. The TOTOLINK A7000R suffers from a stack buffer overflow vulnerability, which stems from the ssid5g parameter in the sub4222E0 function faili...
CVE-2025-63459
Totolink A7000R v9.1.0u.6115B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the sub421CF0 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
EUVD-2025-37388
Totolink A7000R v9.1.0u.6115B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the sub421CF0 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63459
Totolink A7000R v9.1.0u.6115B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the sub421CF0 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63459
Totolink A7000R v9.1.0u.6115B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the sub421CF0 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-63460
Totolink A7000R firmware 9.1.0u.6115_B20201022 has a stack overflow in sub_4222E0 triggered by the ssid5g input, leading to Denial of Service. Multiple sources (NVD/CNVD/Red Hat/ENISA/CNNVD, etc.) corroborate a DoS outcome via crafted requests; no remediation or fixed version is stated in the pro...
CVE-2025-63460
Totolink A7000R v9.1.0u.6115B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the sub4222E0 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
PT-2025-44657
Name of the Vulnerable Software and Affected Versions Totolink A7000R version 9.1.0u.6115 B20201022 Description The software contains a stack overflow issue through the ssid5g parameter within the urldecode function. A crafted request can lead to a Denial of Service DoS. Recommendations At the...
CVE-2025-6138
A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected by this vulnerability is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ssid5g leads to buffer overflow. The attack can ...
CVE-2024-37640
TOTOLINK A3700R V9.1.2u.616520211012 was discovered to contain a stack overflow via ssid5g in the function setWiFiEasyGuestCfg...
CVE-2023-24122
Jensen of Scandinavia Eagle 1200AC V15.03.06.33en was discovered to contain a stack overflow via the ssid5g parameter at /goform/WifiBasicSet...
CVE-2022-37094
H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditBasicSSID5G...
H3C Magic R100 缓冲区错误漏洞
H3C Magic R100 is a router from H3C. H3C Magic R100R100V100R005 version has a buffer overflow vulnerability, which originates from a stack overflow problem in the EditBasicSSID5G parameter in /goform/aspForm, and can be exploited by remote attackers to execute arbitrary code...