CVE Details
Basic Information
| Title | TOTOLINK EX1200T HTTP POST Request formFilter buffer overflow |
|---|---|
| Type | cve |
| Published | 2025-06-10T00:31:08.647Z |
| Last Seen |
Product Information
| Vendor | TOTOLINK |
|---|---|
| Product | EX1200T |
| Version | 4.1.2cu.5232_B20210713 |
CVSS Information
| Base Score | 8.7 (HIGH) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A critical buffer overflow vulnerability exists in TOTOLINK EX1200T routers up to version 4.1.2cu.5232_B20210713. The vulnerability is in the formFilter component of the HTTP POST request handler, allowing remote attackers to potentially execute arbitrary code. The exploit has been publicly disclosed and may be actively used. |
|---|---|
| AI Severity | High |
| Vendor | TOTOLINK |
| Product | EX1200T |
| Affected Version | up to 4.1.2cu.5232_B20210713 |
Affected Products
- TOTOLINK EX1200T 4.1.2cu.5232_B20210713
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-120, CWE-119 |
| Bulletin Family |
References
Description
A vulnerability classified as critical was found in TOTOLINK EX1200T up to 4.1.2cu.5232_B20210713. This vulnerability affects unknown code of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.