CVE-2025-1852 | Totolink EX1800T 9.1.0cu.2112_B20220316 /cgi-bin/cstecgi.cgi loginAuth password buffer overflow

Inserito da Angelo Barbosa | Mar 2, 2025 | CVE

A vulnerability has been found in Totolink EX1800T 9.1.0cu.2112_B20220316 and classified as critical. This vulnerability affects the function loginAuth of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument password leads to buffer overflow.

This vulnerability was named CVE-2025-1852. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-1852 | Totolink EX1800T 9.1.0cu.2112_B20220316 /cgi-bin/cstecgi.cgi loginAuth password buffer overflow

Post correlati

CVE-2024-6899 | SourceCodester Record Management System 1.0 view_info.php id sql injection

CVE-2024-39381 | Adobe After Effects AVI File Parser out-of-bounds write (ZDI-24-1202)

CVE-2024-2176 | Google Chrome prior 122.0.6261.111 FedCM use after free

VDB-259600 | SourceCodester Online Courseware 1.0 edit.php id cross site scripting