{"vulnerability": "cve-2025-6336", "sightings": [{"uuid": "f65e4392-910d-43c4-8d2f-c1b31d46f2ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6336", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ls26afmm3f23", "content": "", "creation_timestamp": "2025-06-20T13:43:40.591004Z"}, {"uuid": "fe969bef-aa5e-4c16-8774-52554ebfe074", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-63364", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m76mupceml2k", "content": "", "creation_timestamp": "2025-12-04T18:43:44.429595Z"}, {"uuid": "3e01b119-7228-4523-a5b8-7b7e549dce9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6336", "type": "published-proof-of-concept", "source": "Telegram/RVoRmhV4mBrX1AoKc1bnQCr98TeoGsmk3LopTdmMflAKHiM", "content": "", "creation_timestamp": "2025-06-20T12:01:57.000000Z"}, {"uuid": "1694c25c-52b8-4c50-b621-93ae98e5f12b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6336", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18932", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-6336\n\ud83d\udd25 CVSS Score: 8.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P)\n\ud83d\udd39 Description: A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. It has been classified as critical. Affected is an unknown function of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-06-20T11:31:06.875Z\n\ud83d\udccf Modified: 2025-06-20T11:31:06.875Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.313332\n2. https://vuldb.com/?ctiid.313332\n3. https://vuldb.com/?submit.596690\n4. https://github.com/awindog/cve/blob/main/688/12.md\n5. https://github.com/awindog/cve/blob/main/688/12.md#poc\n6. https://www.totolink.net/", "creation_timestamp": "2025-06-20T11:46:54.000000Z"}]}