{"id":6511,"date":"2025-06-06T05:43:40","date_gmt":"2025-06-06T05:43:40","guid":{"rendered":"http:\/\/localhost\/?p=6511"},"modified":"2025-06-06T05:43:40","modified_gmt":"2025-06-06T05:43:40","slug":"totolink-x15-http-post-request-formsaveconfig-buffer-overflow","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=6511","title":{"rendered":"TOTOLINK X15 HTTP POST Request formSaveConfig buffer overflow"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\nTOTOLINK X15 HTTP POST Request formSaveConfig buffer overflow<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-06-06T09:00:24.134Z<\/td>\n<\/tr>\n
Last Seen<\/th>\n<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\nTOTOLINK<\/td>\n<\/tr>\n
Product<\/th>\nX15<\/td>\n<\/tr>\n
Version<\/th>\n1.0.0-B20230714.1105<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n\n\n\n
Base Score<\/th>\n8.7 (HIGH)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:N\/VC:H\/VI:H\/VA:H\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n
Confidentiality Impact<\/th>\n<\/td>\n<\/tr>\n
Integrity Impact<\/th>\n<\/td>\n<\/tr>\n
Availability Impact<\/th>\n<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA critical buffer overflow vulnerability exists in the TOTOLINK X15 router, specifically within the HTTP POST request handler. This vulnerability can be exploited remotely, potentially allowing attackers to execute arbitrary code or cause system crashes.<\/td>\n<\/tr>\n
AI Severity<\/th>\nHigh<\/td>\n<\/tr>\n
Vendor<\/th>\nTOTOLINK<\/td>\n<\/tr>\n
Product<\/th>\nTOTOLINK X15<\/td>\n<\/tr>\n
Affected Version<\/th>\n1.0.0-B20230714.1105<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n