CNNVD-202507-2521 Information
CNNVD ID
CNNVD-202507-2521
Related CVE
- CNNVD Published: 2025-07-19
Description (Chinese)
TOTOLINK T6是中国吉翁电子(TOTOLINK)公司的一款无线双频路由器。 TOTOLINK T6 4.1.5cu.748_B20211015版本存在安全漏洞,该漏洞源于MQTT服务中recvSlaveStaInfo函数对参数dest处理不当导致缓冲区溢出。
Description (English)
TOTOLINK T6 is a wireless dual-frequency router of the Chinese company TOTOLINK. The security loophole in TOTOLINK T6 4.1.5cu.748 B20211015 stems from the fact that the recvSlaveStaInfo function of the MQTT service mishandled the parameter dest resulting in a buffer zone spill.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
吉翁电子
Published
2025-07-19
Last Modified
2026-02-24
References
https://www.totolink.net/ https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/4.md https://vuldb.com/?submit.617572 https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/4.md#poc https://vuldb.com/?ctiid.316940 https://vuldb.com/?id.316940 https://access.redhat.com/security/cve/cve-2025-7837
Share on: