CNNVD-202506-3220 Information
CNNVD ID
CNNVD-202506-3220
Related CVE
- CNNVD Published: 2025-06-25
Description (Chinese)
TOTOLINK A702r是中国吉翁电子(TOTOLINK)公司的一款路由器设备。 TOTOLINK A702r 4.0.0-B20230721.1521版本存在安全漏洞,该漏洞源于文件/boafrm/formIpv6Setup对参数submit-url处理不当,可能导致缓冲区溢出。
Description (English)
TOTOLINK A702r is a router equipment of the Chinese company TOTOLINK. TOTOLINK A702r 4.0.0-B202300721.1521 contains a security loophole, which stems from the inappropriate handling of the parameters submit-url in the document/boafrm/formIpv6Setup, which may result in spilling over the buffer zone.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
头歌
Published
2025-06-25
Last Modified
2026-02-24
References
https://www.totolink.net/ https://vuldb.com/?submit.602292 https://github.com/d2pq/cve/blob/main/616/24.md https://github.com/d2pq/cve/blob/main/616/24.md#poc https://vuldb.com/?ctiid.313852 https://vuldb.com/?id.313852 https://nvd.nist.gov/vuln/detail/CVE-2025-6627
Share on: