Skip to main content

A3002r Firmware CVE-2025-6149

| EUVDEUVD-2025-18454 HIGH
Buffer Overflow (CWE-119)
2025-06-17 cna@vuldb.com
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
EUVD ID Assigned
Mar 14, 2026 - 22:15 euvd
EUVD-2025-18454
Analysis Generated
Mar 14, 2026 - 22:15 vuln.today
PoC Detected
Jun 23, 2025 - 19:28 vuln.today
Public exploit code
CVE Published
Jun 17, 2025 - 01:15 nvd
HIGH 8.8

DescriptionCVE.org

A vulnerability classified as critical has been found in TOTOLINK A3002R 4.0.0-B20230531.1404. Affected is an unknown function of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

Critical buffer overflow vulnerability in TOTOLINK A3002R firmware version 4.0.0-B20230531.1404 affecting the HTTP POST request handler for the /boafrm/formSysLog endpoint. An authenticated attacker can exploit the 'submit-url' parameter to trigger a buffer overflow, achieving remote code execution with high confidentiality, integrity, and availability impact. The vulnerability has public exploit code available and represents an active threat to deployed devices.

Technical ContextAI

The vulnerability exists in the HTTP POST request handler component of TOTOLINK's web-based management interface, specifically in the /boafrm/formSysLog file which processes system logging configuration requests. The root cause is classified as CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), indicating insufficient input validation on the 'submit-url' parameter before it is written to a fixed-size buffer. This classic buffer overflow condition allows an attacker to overflow the allocated memory region, potentially overwriting adjacent stack or heap memory. The affected device is the TOTOLINK A3002R wireless router, a consumer-grade networking device that exposes this vulnerable endpoint through its embedded web management interface.

CVE-2025-25579 CRITICAL POC
9.8 Mar 28

TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Command Injection in /bin/boa via bandstr. Rated critical severit

CVE-2025-45858 CRITICAL POC
9.8 May 13

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability via the FUN_00459fdc f

CVE-2024-34195 CRITICAL POC
9.8 Aug 28

TOTOLINK AC1200 Wireless Router A3002R Firmware V1.1.1-B20200824 is vulnerable to Buffer Overflow. Rated critical severi

CVE-2024-42520 CRITICAL POC
9.8 Aug 12

TOTOLINK A3002R v4.0.0-B20230531.1404 contains a buffer overflow vulnerability in /bin/boa via formParentControl. Rated

CVE-2025-6393 HIGH POC
8.8 Jun 21

CVE-2025-6393 is a critical buffer overflow vulnerability in the HTTP POST request handler of TOTOLINK routers affecting

CVE-2025-6164 HIGH POC
8.8 Jun 17

Critical buffer overflow vulnerability in TOTOLINK A3002R router firmware version 4.0.0-B20230531.1404, affecting the HT

CVE-2025-6337 HIGH POC
8.8 Jun 20

CVE-2025-6337 is a critical buffer overflow vulnerability in TOTOLINK A3002R and A3002RU routers affecting versions 3.0.

CVE-2025-6487 HIGH POC
8.8 Jun 22

CVE-2025-6487 is a critical stack-based buffer overflow vulnerability in TOTOLINK A3002R router firmware version 1.1.1-B

CVE-2025-6486 HIGH POC
8.8 Jun 22

CVE-2025-6486 is a critical stack-based buffer overflow vulnerability in TOTOLINK A3002R router firmware version 1.1.1-B

CVE-2024-54907 HIGH POC
8.8 Dec 26

TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Remote Code Execution in /bin/boa via formWsc. Rated high severit

CVE-2020-25499 HIGH POC
8.8 Dec 09

TOTOLINK A3002RU-V2.0.0 B20190814.1034 allows authenticated remote users to modify the system's 'Run Command'. Rated hig

CVE-2025-25635 HIGH POC
8.0 Feb 28

TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. Rated high severity (CVSS 8.0), this vul

Share

CVE-2025-6149 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy