Skip to main content

A702r Firmware CVE-2025-6147

| EUVDEUVD-2025-18457 HIGH
Buffer Overflow (CWE-119)
2025-06-17 cna@vuldb.com
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
EUVD ID Assigned
Mar 14, 2026 - 22:15 euvd
EUVD-2025-18457
Analysis Generated
Mar 14, 2026 - 22:15 vuln.today
PoC Detected
Jun 23, 2025 - 19:29 vuln.today
Public exploit code
CVE Published
Jun 17, 2025 - 01:15 nvd
HIGH 8.8

DescriptionCVE.org

A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

Critical buffer overflow vulnerability in TOTOLINK A702R router firmware (version 4.0.0-B20230721.1521) affecting the HTTP POST request handler for the /boafrm/formSysLog endpoint. An authenticated attacker can exploit this vulnerability remotely by manipulating the submit-url parameter to achieve arbitrary code execution with full system compromise (confidentiality, integrity, and availability impact). Public exploit code is available, significantly elevating real-world exploitation risk.

Technical ContextAI

The vulnerability exists in the HTTP POST request handler component of the TOTOLINK A702R router's web interface, specifically within the /boafrm/formSysLog endpoint. The root cause is CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), a classic buffer overflow condition where user-supplied input to the submit-url parameter is not properly validated or bounds-checked before being copied into a fixed-size buffer. This occurs during parsing of formSysLog form submissions. TOTOLINK A702R is an entry-level 802.11n wireless router commonly deployed in small office/home office (SOHO) environments. The affected firmware version 4.0.0-B20230721.1521 indicates a build from July 2023. The vulnerability allows an authenticated user with valid credentials to the router's administrative interface to overflow the buffer and execute arbitrary code in the context of the router's HTTP daemon process.

RemediationAI

Immediate actions: (1) Check TOTOLINK's official website (https://www.totolink.net/) for firmware updates released after 4.0.0-B20230721.1521; (2) If a patched firmware version is available, download and apply it following the vendor's update procedure (typically via the router's web interface or via TFTP); (3) If no patch is available, implement compensating controls: restrict HTTP access to the /boafrm/formSysLog endpoint via firewall rules, disable remote management/WAN access to the router's web interface, and enforce strong administrator credentials; (4) Monitor router logs for POST requests to /boafrm/formSysLog with suspicious submit-url parameter values; (5) Consider replacing the affected device if the vendor does not provide timely security updates, particularly in production environments. Contact TOTOLINK support at support@totolink.net or via their website for vendor advisory and patch availability.

CVE-2025-6393 HIGH POC
8.8 Jun 21

CVE-2025-6393 is a critical buffer overflow vulnerability in the HTTP POST request handler of TOTOLINK routers affecting

CVE-2025-6825 HIGH POC
8.8 Jun 28

A vulnerability classified as critical was found in TOTOLINK A702R up to 4.0.0-B20230721.1521. Affected by this vulnerab

CVE-2025-6627 HIGH POC
8.8 Jun 25

A buffer overflow vulnerability in A vulnerability (CVSS 8.8). Risk factors: public PoC available.

CVE-2025-6940 HIGH POC
8.8 Jul 01

A vulnerability classified as critical was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected by this vulnerability

CVE-2025-9781 HIGH POC
7.4 Sep 01

A vulnerability has been found in TOTOLINK A702R 4.0.0-B20211108.1423. Rated high severity (CVSS 7.4), this vulnerabilit

CVE-2025-9783 HIGH POC
7.4 Sep 01

A vulnerability was determined in TOTOLINK A702R 4.0.0-B20211108.1423. Rated high severity (CVSS 7.4), this vulnerabilit

CVE-2025-9782 HIGH POC
7.4 Sep 01

A vulnerability was found in TOTOLINK A702R 4.0.0-B20211108.1423. Rated high severity (CVSS 7.4), this vulnerability is

CVE-2025-9780 HIGH POC
7.4 Sep 01

A flaw has been found in TOTOLINK A702R 4.0.0-B20211108.1423. Rated high severity (CVSS 7.4), this vulnerability is remo

CVE-2025-9779 HIGH POC
7.4 Sep 01

A vulnerability was detected in TOTOLINK A702R 4.0.0-B20211108.1423. Rated high severity (CVSS 7.4), this vulnerability

CVE-2025-4835 HIGH
8.7 May 17

A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. Rated high severity (CVSS 8.7), th

CVE-2025-4834 HIGH
8.7 May 17

A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. Rated high severity (CVSS 8.7), th

CVE-2025-4833 HIGH
8.7 May 17

A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615 and classified as critical. Rated h

Share

CVE-2025-6147 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy