CVE-2025-14964 | TOTOLINK T10 4.1.8cu.5083_B20200521 /cgi-bin/cstecgi.cgi sprintf loginAuthUrl stack-based overflow

Inserito da Angelo Barbosa | Dic 19, 2025 | CVE

A vulnerability, which was classified as critical, was found in TOTOLINK T10 4.1.8cu.5083_B20200521. This affects the function sprintf of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument loginAuthUrl leads to stack-based buffer overflow.

This vulnerability is listed as CVE-2025-14964. The attack may be performed from remote. There is no available exploit.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

CVE-2025-14964 | TOTOLINK T10 4.1.8cu.5083_B20200521 /cgi-bin/cstecgi.cgi sprintf loginAuthUrl stack-based overflow

Post correlati

CVE-2024-4758 | Muslim Prayer Time BD Plugin up to 2.4 on WordPress Setting cross-site request forgery

CVE-2024-21188 | Oracle Financial Services Revenue Management and Billing 6.0.0.0.0/6.1.0.0.0 Financial Service Remote Code Execution

CVE-2024-11251 | erzhongxmu Jeewms up to 20241108 AuthInterceptor cgReportController.do begin_date sql injection (IB2XZG)

CVE-2025-25676 | Tenda i12 1.0.0.10 Parameter formwrlSSIDset list buffer overflow