CNNVD-202601-3058 Information

CNNVD ID

CNNVD-202601-3058

Related CVE

CVE-2026-1156

• CNNVD Published: 2026-01-19

Description (Chinese)

TOTOLINK LR350是中国吉翁电子（TOTOLINK）公司的一款无线路由器。 TOTOLINK LR350 9.3.5u.6369_B20220309版本存在安全漏洞，该漏洞源于对文件/cgi-bin/cstecgi.cgi中参数ssid的错误操作，可能导致缓冲区溢出。

Description (English)

TOTOLINK LR350 is a wireless router of the Chinese company TOTOLINK. There is a security loophole in TOTOLINK LR 350 9.3.5u.6369 B20220309, which stems from an error in the use of sid for the parameters in document/cgi-bin/cstecgi.cgi, which may result in a buffer zone spill.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

吉翁电子

Published

2026-01-19

Last Modified

2026-02-24

References

https://lavender-bicycle-a5a.notion.site/TOTOLINK-LR350-setWiFiBasicCfg-2e453a41781f80a2ad43e85bf5d46659?source=copy_link https://vuldb.com/?ctiid.341750 https://vuldb.com/?id.341750 https://vuldb.com/?submit.735722 https://www.totolink.net/