CVE-2025-6940 | TOTOLINK A702R 4.0.0-B20230721.1521 HTTP POST Request formParentControl submit-url buffer overflow

Inserito da Angelo Barbosa | Giu 30, 2025 | CVE

A vulnerability classified as critical was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected by this vulnerability is an unknown functionality of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.

This vulnerability is known as CVE-2025-6940. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-6940 | TOTOLINK A702R 4.0.0-B20230721.1521 HTTP POST Request formParentControl submit-url buffer overflow

Post correlati

CVE-2024-6570 | Glossary Plugin up to 2.2.26 on WordPress information disclosure

CVE-2024-2364 | Musicshelf 1.0/1.1 on Android Backup androidmanifest.xml backup

CVE-2024-12003 | WP System Plugin up to 1.1.1 on WordPress cross-site request forgery

CVE-2025-33005 | IBM Planning Analytics Local 2.0/2.1 session expiration