CVE-2025-55589 Information

Aug 19, 2025 cve

Description

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain multiple OS command injection vulnerabilities via the macstr bandstr and clientoff parameters at /boafrm/formMapDelDevice.

Reference

https://github.com/goldenGlow21/softwares_PoC/blob/main/A3002R_V4/Boa%20-%20Command%20Injection/PoC%201.md

CNNVD-202508-2051 (Published: 2025-08-18)

Share on: