Security Advisory

CVE-2025-6337

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-20 12:00:18

Last updated 2025-06-23 20:26:09

Assigner VulDB

State PUBLISHED

Description

A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615/4.0.0-B20230531.1404. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗