Unrated severityNVD Advisory· Published Jun 17, 2025· Updated Jun 17, 2025
TOTOLINK A3002R HTTP POST Request formSysLog buffer overflow
CVE-2025-6149
Description
A vulnerability classified as critical has been found in TOTOLINK A3002R 4.0.0-B20230531.1404. Affected is an unknown function of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
6- github.com/Lena-lyy/cve/blob/main/6.mdmitreexploit
- vuldb.commitrethird-party-advisory
- github.com/Lena-lyy/cve/blob/main/6.mdmitrerelated
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
- www.totolink.netmitreproduct
News mentions
0No linked articles in our index yet.