CNNVD-202602-348 Information

CNNVD ID

CNNVD-202602-348

Related CVE

CVE-2025-67188

• CNNVD Published: 2026-02-03

Description (Chinese)

TOTOLINK A950RG是中国吉翁电子（TOTOLINK）公司的一款超世代 Giga 无线路由器。 TOTOLINK A950RG V4.1.2cu.5204_B20210112版本存在安全漏洞，该漏洞源于setRadvdCfg接口对radvdinterfacename参数长度验证不足，可能导致栈缓冲区溢出。

Description (English)

TOTOLINK A950RG is a multigenerational Giga Wireless router of the Chinese company TOTOLINK. TOTOLINK A950RG V4.1.2cu.5204 B20210112 contains a security loophole, which stems from the inadequate verification of the length of the radvdCfg interface for the radvdinterfacename parameters, which could lead to a spill over the silo buffer zone.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

吉翁电子

Published

2026-02-03

Last Modified

2026-02-24

References

https://github.com/SunnyYANGyaya/cuicuishark-sheep-fishIOT/blob/main/ToTolink/A950RG/5024-ipv6-setRadvdCfg-radvdinterfacename-buffer.md