CVE-2026-7747 | Totolink N300RH 3.2.4-B20220812 Parameter /cgi-bin/cstecgi.cgi loginauth Password buffer overflow

Inserito da Angelo Barbosa | Mag 3, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Totolink N300RH 3.2.4-B20220812. Affected by this vulnerability is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. Performing a manipulation of the argument Password results in buffer overflow.

This vulnerability is identified as CVE-2026-7747. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2026-7747 | Totolink N300RH 3.2.4-B20220812 Parameter /cgi-bin/cstecgi.cgi loginauth Password buffer overflow

Post correlati

CVE-2024-3257 | SourceCodester Internship Portal Management System 1.0 edit_activity_query.php title/description/start/end sql injection

CVE-2025-5843 | Brandfolder Plugin up to 5.0.19 on WordPress ID cross site scripting

CVE-2024-41445 | mdflib 2.1 mdf4 File ReadData heap-based overflow

CVE-2026-5367 | OVN Open Virtual Network DHCPv6 Client ID out-of-bounds