CVE-2023-7222 | Totolink X2000R 1.0.0-B20221212.1452 HTTP POST Request /bin/boa formTmultiAP submit-url buffer overflow

A vulnerability was found in Totolink X2000R 1.0.0-B20221212.1452. It has been declared as critical. This vulnerability affects the function formTmultiAP of the file /bin/boa of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.

This vulnerability was named CVE-2023-7222. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2023-7222 | Totolink X2000R 1.0.0-B20221212.1452 HTTP POST Request /bin/boa formTmultiAP submit-url buffer overflow

Related Posts

CVE-2024-1746 | Testimonial Slider Plugin up to 2.3.7 on WordPress Setting cross site scripting

CVE-2023-47115 | HumanSignal label-studio up to 1.9.1 users/functions.py cross site scripting (GHSA-q68h-xwq5-mm7x)

CVE-2023-52547 | Huawei CurieM-WFG9B 2.29 SMM Module length parameter

CVE-2023-4020 | Silabs GSDK prior 4.4.0 input validation