Security Advisory

CVE-2025-67189

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-03 00:00:00

Last updated 2026-02-09 21:47:58

Assigner mitre

State PUBLISHED

Description

A buffer overflow vulnerability exists in the setParentalRules interface of TOTOLINK A950RG V4.1.2cu.5204_B20210112. The urlKeyword parameter is not properly validated, and the function concatenates multiple user-controlled fields into a fixed-size stack buffer without performing boundary checks. A remote attacker can exploit this flaw to cause denial of service or potentially achieve arbitrary code execution.

← Browse all CVEs View on cve.org ↗