CVE Details
Basic Information
| Title |
CVE-2025-4833 |
| Type |
cve |
| Published |
2025-05-17T18:15:19 |
| Last Seen |
2025-05-17T18:25:51 |
CVSS Information
| Base Score |
8.8 (HIGH) |
| Attack Vector |
NETWORK |
| Attack Complexity |
LOW |
| Privileges Required |
LOW |
| User Interaction |
NONE |
| Scope |
UNCHANGED |
| Confidentiality Impact |
HIGH |
| Integrity Impact |
HIGH |
| Availability Impact |
HIGH |
AI Analysis
| AI Description |
|
| AI Severity |
|
| Vendor |
|
| Product |
|
| Affected Version |
|
Additional Information
| CVE List |
CVE-2025-4833 |
| CWE List |
CWE-119, CWE-120 |
| Bulletin Family |
cve |
Description
A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615 and classified as critical. This issue affects some unknown processing of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Score Summary
Base Score: %!f(string=#) (HIGH)
View Full CVE Details
