CNNVD-202506-2841 Information

Jun 21, 2025 cve

CNNVD ID

CNNVD-202506-2841

CVE-2025-6393

CNNVD Published: 2025-06-21

Description (Chinese)

TOTOLINK A3002RU等都是中国吉翁电子（TOTOLINK）公司的产品。TOTOLINK A3002RU是一款无线路由器产品。TOTOLINK A702r是一款路由器设备。TOTOLINK A3002R是一款无线路由器。 TOTOLINK多款产品存在安全漏洞，该漏洞源于文件/boafrm/formIPv6Addr中参数submit-url的错误操作导致缓冲区溢出。以下产品受到影响：TOTOLINK A702R、A3002R、A3002RU和EX1200T。

Description (English)

TOTOLINK A3002RU and others are products of the Chinese company TOTOLINK. TOTOLINK A3002RU is a wireless router product. TOTOLINK A702r is a router device. TOTOLINK A3002R is a wireless router. There is a security loophole in TOTOOLINK ’ s multiple products, which stems from the faulty operation of the parameter submit-url in the document/boafrm/formIPv6Addr, which led to the spilling of the buffer zone. The following products were affected: TOTOLINK A702R, A3002R, A3002RU and EX1200T.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

头歌

Published

2025-06-21

Last Modified

2026-02-24

References

https://github.com/awindog/cve/blob/main/688/15.md https://github.com/awindog/cve/blob/main/688/16.md https://vuldb.com/?ctiid.313386 https://vuldb.com/?id.313386 https://vuldb.com/?submit.597565 https://vuldb.com/?submit.597566 https://vuldb.com/?submit.597591 https://vuldb.com/?submit.597592 https://www.totolink.net/

Share on: