CNNVD-202506-2661 Information

Jun 20, 2025 cve

CNNVD ID

CNNVD-202506-2661

CVE-2025-6337

CNNVD Published: 2025-06-20

Description (Chinese)

TOTOLINK A3002RU和TOTOLINK A3002R都是中国吉翁电子（TOTOLINK）公司的产品。TOTOLINK A3002RU是一款无线路由器产品。TOTOLINK A3002R是一款无线路由器。 TOTOLINK A3002RU和TOTOLINK A3002R存在安全漏洞，该漏洞源于对文件/boafrm/formTmultiAP中参数submit-url的错误操作导致缓冲区溢出。

Description (English)

TOTOLINK A3002RU and TOTOLINK A3002R are products of the Chinese company TOTOLINK. TOTOLINK A3002RU is a wireless router product. TOTOLINK A3002R is a wireless router. There is a security loophole in TOTOLINK A3002RU and TOTOLINK A3002R, which results from an error in the operation of the parameters submit-url in the document/boafrm/formTmultiAP.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

头歌

Published

2025-06-20

Last Modified

2026-02-24

References

https://github.com/awindog/cve/blob/main/688/13.md https://github.com/awindog/cve/blob/main/688/14.md https://vuldb.com/?ctiid.313333 https://vuldb.com/?id.313333 https://vuldb.com/?submit.596691 https://vuldb.com/?submit.596692 https://www.totolink.net/

Share on: