VYPR
Unrated severityNVD Advisory· Published Feb 3, 2026· Updated Feb 9, 2026

CVE-2025-67189

CVE-2025-67189

Description

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204_B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. A remote attacker can exploit this flaw to cause denial of service or potentially achieve arbitrary code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Totolink/A950RGcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = V4.1.2cu.5204_B20210112

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.