CVE-2025-8140 | TOTOLINK A702R 4.0.0-B20230721.1521 HTTP POST Request formWlanMultipleAP submit-url buffer overflow

Inserito da Angelo Barbosa | Lug 24, 2025 | CVE

A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formWlanMultipleAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.

This vulnerability was named CVE-2025-8140. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-8140 | TOTOLINK A702R 4.0.0-B20230721.1521 HTTP POST Request formWlanMultipleAP submit-url buffer overflow

Post correlati

CVE-2024-22048 | govuk_tech_docs up to 3.3.0 Search Result cross site scripting (GHSA-x2xw-hw8g-6773)

CVE-2024-10106 | Silabs Ember ZNet SDK 7.4.0/7.4.0.0/8.0.0 Packet Handoff Plugin buffer overflow

CVE-2025-36630 | Tenable Nessus up to 10.8.4 on Windows privileges management

CVE-2023-48773 | WooCommerce Login Redirect Plugin up to 2.2.4 on WordPress cross-site request forgery