Vulnerability-Lookup

CNVD-2025-13832

Vulnerability from cnvd - Published: 2025-06-26

Title

TOTOLINK EX1200T缓冲区溢出漏洞

Description

TOTOLINK EX1200T是中国吉翁电子（TOTOLINK）公司的一款Wi-Fi范围扩展器。 TOTOLINK EX1200T 4.1.2cu.5232_B20210713版本存在缓冲区溢出漏洞。该漏洞产生的原因是HTTP POST请求处理组件中文件/boafrm/formStats的某些未知处理过程存在错误。攻击者可利用该漏洞远程发起攻击，导致缓冲区溢出。

Severity

高

Formal description

厂商尚未提供漏洞修复方案，请关注厂商主页更新： https://www.totolink.net/

Reference

https://vuldb.com/?submit.592696 https://www.totolink.net/ https://github.com/byxs0x0/cve2/blob/main/10.md https://github.com/byxs0x0/cve2/blob/main/10.md#poc https://vuldb.com/?ctiid.312599 https://vuldb.com/?id.312599

Impacted products

Name
TOTOLINK TOTOLINK EX1200T 4.1.2cu.5232_B20210713

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2025-6130",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2025-6130"
    }
  },
  "description": "TOTOLINK EX1200T\u662f\u4e2d\u56fd\u5409\u7fc1\u7535\u5b50\uff08TOTOLINK\uff09\u516c\u53f8\u7684\u4e00\u6b3eWi-Fi\u8303\u56f4\u6269\u5c55\u5668\u3002\n\nTOTOLINK EX1200T 4.1.2cu.5232_B20210713\u7248\u672c\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u4ea7\u751f\u7684\u539f\u56e0\u662fHTTP POST\u8bf7\u6c42\u5904\u7406\u7ec4\u4ef6\u4e2d\u6587\u4ef6/boafrm/formStats\u7684\u67d0\u4e9b\u672a\u77e5\u5904\u7406\u8fc7\u7a0b\u5b58\u5728\u9519\u8bef\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8fdc\u7a0b\u53d1\u8d77\u653b\u51fb\uff0c\u5bfc\u81f4\u7f13\u51b2\u533a\u6ea2\u51fa\u3002",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u66f4\u65b0\uff1a\r\nhttps://www.totolink.net/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-13832",
  "openTime": "2025-06-26",
  "products": {
    "product": "TOTOLINK TOTOLINK EX1200T 4.1.2cu.5232_B20210713"
  },
  "referenceLink": "https://vuldb.com/?submit.592696\r\nhttps://www.totolink.net/\r\nhttps://github.com/byxs0x0/cve2/blob/main/10.md\r\nhttps://github.com/byxs0x0/cve2/blob/main/10.md#poc\r\nhttps://vuldb.com/?ctiid.312599\r\nhttps://vuldb.com/?id.312599",
  "serverity": "\u9ad8",
  "submitTime": "2025-06-20",
  "title": "TOTOLINK EX1200T\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e"
}

CVE-2025-6130 (GCVE-0-2025-6130)

Vulnerability from cvelistv5 – Published: 2025-06-16 16:31 – Updated: 2025-06-17 18:12

Title

TOTOLINK EX1200T HTTP POST Request formStats buffer overflow

Summary

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This issue affects some unknown processing of the file /boafrm/formStats of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity ?

8.7 (High)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R

CWE

CWE-120 - Buffer Overflow
CWE-119 - Memory Corruption

Assigner

VulDB

References

URL

Tags

	https://vuldb.com/?id.312599	vdb-entry
	https://vuldb.com/?ctiid.312599	signaturepermissions-required
	https://vuldb.com/?submit.592696	third-party-advisory
	https://github.com/byxs0x0/cve2/blob/main/10.md	related
	https://github.com/byxs0x0/cve2/blob/main/10.md#poc	exploit
	https://www.totolink.net/	product

Impacted products

	Vendor	Product	Version
	TOTOLINK	EX1200T	Affected: 4.1.2cu.5232_B20210713

Credits

wang_lun (VulDB User)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-6130",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-06-17T18:11:59.146239Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-17T18:12:18.803Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://github.com/byxs0x0/cve2/blob/main/10.md"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "modules": [
            "HTTP POST Request Handler"
          ],
          "product": "EX1200T",
          "vendor": "TOTOLINK",
          "versions": [
            {
              "status": "affected",
              "version": "4.1.2cu.5232_B20210713"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "wang_lun (VulDB User)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This issue affects some unknown processing of the file /boafrm/formStats of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used."
        },
        {
          "lang": "de",
          "value": "Eine Schwachstelle wurde in TOTOLINK EX1200T 4.1.2cu.5232_B20210713 entdeckt. Sie wurde als kritisch eingestuft. Hierbei geht es um eine nicht exakt ausgemachte Funktion der Datei /boafrm/formStats der Komponente HTTP POST Request Handler. Dank Manipulation mit unbekannten Daten kann eine buffer overflow-Schwachstelle ausgenutzt werden. Umgesetzt werden kann der Angriff \u00fcber das Netzwerk. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
            "version": "4.0"
          }
        },
        {
          "cvssV3_1": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
            "version": "3.1"
          }
        },
        {
          "cvssV3_0": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
            "version": "3.0"
          }
        },
        {
          "cvssV2_0": {
            "baseScore": 9,
            "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR",
            "version": "2.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-120",
              "description": "Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-119",
              "description": "Memory Corruption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-06-16T16:31:07.769Z",
        "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "shortName": "VulDB"
      },
      "references": [
        {
          "name": "VDB-312599 | TOTOLINK EX1200T HTTP POST Request formStats buffer overflow",
          "tags": [
            "vdb-entry"
          ],
          "url": "https://vuldb.com/?id.312599"
        },
        {
          "name": "VDB-312599 | CTI Indicators (IOB, IOC, IOA)",
          "tags": [
            "signature",
            "permissions-required"
          ],
          "url": "https://vuldb.com/?ctiid.312599"
        },
        {
          "name": "Submit #592696 | TOTOLINK EX1200T V4.1.2cu.5232_B20210713 Buffer Overflow",
          "tags": [
            "third-party-advisory"
          ],
          "url": "https://vuldb.com/?submit.592696"
        },
        {
          "tags": [
            "related"
          ],
          "url": "https://github.com/byxs0x0/cve2/blob/main/10.md"
        },
        {
          "tags": [
            "exploit"
          ],
          "url": "https://github.com/byxs0x0/cve2/blob/main/10.md#poc"
        },
        {
          "tags": [
            "product"
          ],
          "url": "https://www.totolink.net/"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2025-06-15T00:00:00.000Z",
          "value": "Advisory disclosed"
        },
        {
          "lang": "en",
          "time": "2025-06-15T02:00:00.000Z",
          "value": "VulDB entry created"
        },
        {
          "lang": "en",
          "time": "2025-06-15T12:44:11.000Z",
          "value": "VulDB entry last update"
        }
      ],
      "title": "TOTOLINK EX1200T HTTP POST Request formStats buffer overflow"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
    "assignerShortName": "VulDB",
    "cveId": "CVE-2025-6130",
    "datePublished": "2025-06-16T16:31:07.769Z",
    "dateReserved": "2025-06-15T10:39:02.987Z",
    "dateUpdated": "2025-06-17T18:12:18.803Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2025-13832

CVE-2025-6130 (GCVE-0-2025-6130)

Tags

Sightings

Nomenclature