High severity8.8NVD Advisory· Published Jun 17, 2025· Updated Jun 17, 2026
CVE-2025-6146
CVE-2025-6146
Description
A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been classified as critical. This affects an unknown part of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
6- github.com/Lena-lyy/cve/blob/main/3.mdnvdExploitThird Party Advisory
- github.com/Lena-lyy/cve/blob/main/3.mdnvdExploitThird Party Advisory
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions Required
- www.totolink.netnvdProduct
News mentions
0No linked articles in our index yet.