CNNVD-202507-3347 Information
CNNVD ID
CNNVD-202507-3347
Related CVE
- CNNVD Published: 2025-07-25
Description (Chinese)
TOTOLINK T6是中国吉翁电子(TOTOLINK)公司的一款无线双频路由器。 TOTOLINK T6 4.1.5cu.748_B20211015版本存在安全漏洞,该漏洞源于MQTT数据包处理组件中文件/router/meshSlaveDlfw对参数serverIp的错误操作导致缓冲区溢出。
Description (English)
TOTOLINK T6 is a wireless dual-frequency router of the Chinese company TOTOLINK. The security loophole in TOTOLINK T6 4.1.5cu.748 B20211015 results from the error in the file/router/meshSlaveDlfw against parameter serverIp in the MQTT data package processing component.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
吉翁电子
Published
2025-07-25
Last Modified
2026-02-24
References
https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/9.md https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/9.md#poc https://vuldb.com/?ctiid.317584 https://vuldb.com/?id.317584 https://vuldb.com/?submit.620834 https://www.totolink.net/ https://access.redhat.com/security/cve/cve-2025-8170
Share on: