CVE-2025-12240 | TOTOLINK A3300R 17.0.0cu.557_B20221024 /cgi-bin/cstecgi.cgi setDmzCfg ip buffer overflow

Inserito da Angelo Barbosa | Ott 25, 2025 | CVE

A vulnerability classified as critical has been found in TOTOLINK A3300R 17.0.0cu.557_B20221024. This affects the function setDmzCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ip leads to buffer overflow.

This vulnerability is traded as CVE-2025-12240. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-12240 | TOTOLINK A3300R 17.0.0cu.557_B20221024 /cgi-bin/cstecgi.cgi setDmzCfg ip buffer overflow

Post correlati

CVE-2025-6169 | Hamastar WIMP up to 5.3.1.34642 sql injection

CVE-2024-4576 | Tibco EBX up to 9.25 path traversal

CVE-2024-24889 | Geek Code Lab All 404 Pages Redirect to Homepage Plugin up to 1.9 on WordPress cross site scripting

CVE-2024-5141 | Rotating Tweets Plugin up to 1.9.10 on WordPress Shortcode cross site scripting