Skip to main content

Ex1200t Firmware CVE-2025-5793

| EUVDEUVD-2025-17349 HIGH
Buffer Overflow (CWE-119)
2025-06-06 cna@vuldb.com
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
EUVD ID Assigned
Mar 14, 2026 - 18:10 euvd
EUVD-2025-17349
Analysis Generated
Mar 14, 2026 - 18:10 vuln.today
PoC Detected
Jun 12, 2025 - 16:20 vuln.today
Public exploit code
CVE Published
Jun 06, 2025 - 18:15 nvd
HIGH 8.8

DescriptionCVE.org

A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. Affected is an unknown function of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument service_type leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

A critical buffer overflow vulnerability exists in TOTOLINK EX1200T firmware version 4.1.2cu.5232_B20210713 in the HTTP POST request handler for the /boafrm/formPortFw endpoint. An authenticated attacker can exploit this by manipulating the 'service_type' parameter to achieve remote code execution with high impact to confidentiality, integrity, and availability (CVSS 8.8). Public exploits are available, making this an active threat.

Technical ContextAI

The vulnerability resides in the TOTOLINK EX1200T wireless router's embedded HTTP server (boafrm component), specifically in the formPortFw request handler. The root cause is classified as CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), a classic buffer overflow flaw where user-supplied input to the 'service_type' parameter is not properly validated before being written to a fixed-size buffer. The HTTP POST request handler processes form data without adequate bounds checking, allowing an attacker to overflow the stack or heap and overwrite adjacent memory. This affects the CPE context: cpe:2.3:o:totolink:ex1200t_firmware:4.1.2cu.5232_b20210713:*:*:*:*:*:*:*

RemediationAI

Check TOTOLINK's support page for EX1200T firmware updates released after July 2021. Apply the latest firmware version available.; priority: CRITICAL Workaround (Temporary): Restrict network access to the router's management interface (/boafrm/formPortFw) using firewall rules or access control lists. Limit HTTP POST requests to trusted IP addresses only.; priority: HIGH; note: This is a temporary measure only; patching is required. Mitigation: Disable remote management of the router if not required. Change default credentials immediately and use strong, unique passwords to reduce successful authentication exploitation.; priority: MEDIUM Vendor Advisory: Contact TOTOLINK support or check their security advisory page for official patches. Monitor TOTOLINK security bulletins for EX1200T firmware updates.; note: Specific patch version numbers should be verified against vendor releases.

CVE-2023-52032 CRITICAL POC
9.8 Jan 11

TOTOlink EX1200T V4.1.2cu.5232_B20210713 was discovered to contain a remote command execution (RCE) vulnerability via th

CVE-2021-42872 CRITICAL POC
9.8 Jun 02

TOTOLINK EX1200T V4.1.2cu.5215 is affected by a command injection vulnerability that can remotely execute arbitrary code

CVE-2025-28038 CRITICAL POC
9.8 Apr 22

TOTOLINK EX1200T V4.1.2cu.5232_B20210713 was found to contain a pre-auth remote command execution vulnerability in the s

CVE-2025-28039 CRITICAL POC
9.8 Apr 22

TOTOLINK EX1200T V4.1.2cu.5232_B20210713 was found to contain a pre-auth remote command execution vulnerability in the s

CVE-2021-42875 CRITICAL POC
9.8 Jun 02

TOTOLINK EX1200T V4.1.2cu.5215 contains a remote command injection vulnerability in the function setDiagnosisCfg of the

CVE-2025-5600 CRITICAL POC
9.8 Jun 04

Buffer overflow in TOTOLINK EX1200T via setLanguageCfg. EPSS 0.52%. PoC available.

CVE-2025-6393 HIGH POC
8.8 Jun 21

CVE-2025-6393 is a critical buffer overflow vulnerability in the HTTP POST request handler of TOTOLINK routers affecting

CVE-2025-5907 HIGH POC
8.8 Jun 10

Critical buffer overflow vulnerability in TOTOLINK EX1200T routers (firmware versions up to 4.1.2cu.5232_B20210713) affe

CVE-2025-5792 HIGH POC
8.8 Jun 06

A buffer overflow vulnerability (CVSS 8.8). Risk factors: public PoC available.

CVE-2025-6162 HIGH POC
8.8 Jun 17

A buffer overflow vulnerability in A vulnerability (CVSS 8.8). Risk factors: public PoC available.

CVE-2025-6145 HIGH POC
8.8 Jun 16

Critical buffer overflow vulnerability in TOTOLINK EX1200T wireless router (firmware version 4.1.2cu.5232_B20210713) aff

CVE-2025-6144 HIGH POC
8.8 Jun 16

Critical buffer overflow vulnerability in TOTOLINK EX1200T wireless router (firmware version 4.1.2cu.5232_B20210713) aff

Share

CVE-2025-5793 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy