Описание
A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected is an unknown function of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- ExploitThird Party Advisory
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Product
Уязвимые конфигурации
Одновременно
EPSS
8.8 High
CVSS3
7.5 High
CVSS3
9 Critical
CVSS2
Дефекты
Связанные уязвимости
A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected is an unknown function of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Уязвимость встроенного веб-сервера boa (/boafrm/formFilter) микропрограммного обеспечения роутеров TOTOLINK A702R, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
8.8 High
CVSS3
7.5 High
CVSS3
9 Critical
CVSS2