CVE-2025-7837 | TOTOLINK T6 4.1.5cu.748_B20211015 MQTT Service recvSlaveStaInfo dest buffer overflow

Inserito da Angelo Barbosa | Lug 18, 2025 | CVE

A vulnerability was found in TOTOLINK T6 4.1.5cu.748_B20211015 and classified as critical. Affected by this issue is the function recvSlaveStaInfo of the component MQTT Service. The manipulation of the argument dest leads to buffer overflow.

This vulnerability is handled as CVE-2025-7837. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-7837 | TOTOLINK T6 4.1.5cu.748_B20211015 MQTT Service recvSlaveStaInfo dest buffer overflow

Post correlati

CVE-2023-49245 | Huawei HarmonyOS/EMUI Share Module access control

CVE-2024-28325 | Asus RT-N12+ B1 cleartext storage

CVE-2024-10127 | M-Files Server up to 24.10 OpenLDAP Authentication incorrect implementation of authentication algorithm

CVE-2024-45695 | D-Link DIR-X4860 A1 1.00/1.04 Web Service stack-based overflow