CVE-2025-12239 | TOTOLINK A3300R 17.0.0cu.557_B20221024 /cgi-bin/cstecgi.cgi setDdnsCfg buffer overflow

Inserito da Angelo Barbosa | Ott 25, 2025 | CVE

A vulnerability described as critical has been identified in TOTOLINK A3300R 17.0.0cu.557_B20221024. The impacted element is the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi. Executing manipulation can lead to buffer overflow.

This vulnerability appears as CVE-2025-12239. The attack may be performed from remote. In addition, an exploit is available.

CVE-2025-12239 | TOTOLINK A3300R 17.0.0cu.557_B20221024 /cgi-bin/cstecgi.cgi setDdnsCfg buffer overflow

Post correlati

CVE-2025-4953 | Red Hat Enterprise Linux/OpenShift Container Platform Podman temp file

CVE-2023-52595 | Linux Kernel up to 6.7.3 rt2x00 ieee80211_restart_hw deadlock

CVE-2023-52112 | Huawei HarmonyOS/EMUI Wallpaper Service Module access control

CVE-2024-38525 | DataDog dd-trace-cpp up to 0.2.1 denial of service (GHSA-rf3p-mg22-qv6w)