High severity8.8NVD Advisory· Published May 17, 2025· Updated Jun 17, 2026
CVE-2025-4826
CVE-2025-4826
Description
A vulnerability, which was classified as critical, has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This issue affects some unknown processing of the file /boafrm/formWirelessTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Affected products
5Patches
Vulnerability mechanics
References
5- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- github.com/CH13hh/tmp_store_cc/blob/main/toto/5.mdnvdBroken Link
- vuldb.comnvdPermissions RequiredVDB Entry
- www.totolink.netnvdProduct
News mentions
0No linked articles in our index yet.