CVE-2025-28025

Published: Apr 23, 2025Modified: May 6, 2025

7.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Exploitability: 3.9 / Impact: 3.4

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

TOTOLINK A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a buffer overflow vulnerability in downloadFile.cgi through the v14 parameter.

Affected (4)

Products: Totolink: A830r Firmware, A950rg Firmware, A3000ru Firmware, A3100r Firmware

4 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Totolink A830r Firmware	Version 4.1.2cu.5182_b20201102

Running on/with	Platform Versions
Totolink A830r	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Totolink A950rg Firmware	Version 4.1.2cu.5161_b20200903

Running on/with	Platform Versions
Totolink A950rg	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Totolink A3000ru Firmware	Version 5.9c.5185_b20201128

Running on/with	Platform Versions
Totolink A3000ru	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Totolink A3100r Firmware	Version 4.1.2cu.5247_b20211129

Running on/with	Platform Versions
Totolink A3100r	All versions

Related CWEs

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (2)

https://locrian-lightning-dc7.notion.site/BufferOverflow1-19e8e5e2b1a280bfbe52ec9975287f77

Source: cve@mitre.org

ExploitThird Party Advisory

https://locrian-lightning-dc7.notion.site/BufferOverflow1-19e8e5e2b1a280bfbe52ec9975287f77?pvs=73

Source: cve@mitre.org

ExploitThird Party Advisory

Timeline

No history available yet.