CVE-2025-6940 | TOTOLINK A702R 4.0.0-B20230721.1521 HTTP POST Request formParentControl submit-url buffer overflow

Inserito da Angelo Barbosa | Giu 30, 2025 | CVE

A vulnerability classified as critical was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected by this vulnerability is an unknown functionality of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.

This vulnerability is known as CVE-2025-6940. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-6940 | TOTOLINK A702R 4.0.0-B20230721.1521 HTTP POST Request formParentControl submit-url buffer overflow

Post correlati

CVE-2024-5677 | Featured Image Generator Plugin up to 1.3.1 on WordPress Image Upload authorization

CVE-2024-2976 | Tenda F1203 2.0.1.6 /goform/execCommand R7WebsSecurityHandler password stack-based overflow

CVE-2025-4124 | Delta Electronics ISPSoft up to 3.20 ISP File Parser out-of-bounds write (PCSA-2025-00004)

CVE-2024-4930 | SourceCodester Simple Online Bidding System 1.0 index.php id sql injection