CVE-2025-4826 | TOTOLINK A702R/A3002R/A3002RU 3.0.0-B20230809.1615 HTTP POST Request /boafrm/formWirelessTbl submit-url buffer overflow

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability, which was classified as critical, has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This issue affects some unknown processing of the file /boafrm/formWirelessTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.

The identification of this vulnerability is CVE-2025-4826. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-4826 | TOTOLINK A702R/A3002R/A3002RU 3.0.0-B20230809.1615 HTTP POST Request /boafrm/formWirelessTbl submit-url buffer overflow

Post correlati

CVE-2024-56799 | TrueWinter simofa up to 0.2.6 API Route RouteLoader missing authentication (GHSA-83qw-5qq5-v7pq)

CVE-2023-40680 | Yoast SEO Plugin up to 21.0 on WordPress cross site scripting

CVE-2024-3097 | Gallery Plugin up to 3.59 on WordPress authorization

CVE-2024-32111 | WordPress up to 6.5.4 path traversal