CNNVD-202506-2919 Information

CNNVD ID

CNNVD-202506-2919

Related CVE

CVE-2025-6487

• CNNVD Published: 2025-06-22

Description (Chinese)

TOTOLINK A3002R是中国吉翁电子（TOTOLINK）公司的一款无线路由器。 TOTOLINK A3002R 1.1.1-B20200824.0128版本存在安全漏洞，该漏洞源于对文件/boafrm/formRoute中参数subnet的错误操作导致栈缓冲区溢出。

Description (English)

TOTOLINK A3002R is a wireless router of the Chinese company TOTOLINK. There is a security loophole in the TOTOLINK A3002R 1.1.1-B20200824.0128 version, which stems from an error in the operation of subnet, the parameter in the document/boafrm/formRoute, resulting in the spilling of the fence.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

头歌

Published

2025-06-22

Last Modified

2026-02-24

References

https://vuldb.com/?id.313595 https://www.totolink.net/ https://vuldb.com/?submit.600729 https://vuldb.com/?ctiid.313595 https://github.com/wudipjq/my_vuln/blob/main/totolink3/vuln_36/36.md https://access.redhat.com/security/cve/cve-2025-6487