Which versions of A800R are affected by CVE-2026-6157?

Totolik A800R routers running firmware 4.1.2cu.5137_B20200730 are vulnerable to authenticated remote code execution via a buffer overflow in the wireless configuration function, with publicly…

Is there a public PoC exploit available for CVE-2026-6157?

Yes, a public proof-of-concept exploit is available for CVE-2026-6157. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2026-6157?

Within 24 hours: Inventory all Totolik A800R devices and document current firmware versions; restrict administrative access to router management interfaces to trusted networks only. Within 7 days: Contact Totolik support to confirm patch timeline and interim firmware availability; implement network segmentation to isolate router management traffic. Within 30 days: Apply vendor-released firmware patch immediately upon availability; if no patch is released by vendor, evaluate replacement with devices receiving active security support.

A800R CVE-2026-6157

Q: What is the CVSS score of CVE-2026-6157?

CVE-2026-6157 has a CVSS 4.0 base score of 7.4 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.1%.

EUVD-2026-21814 HIGH

Classic Buffer Overflow (CWE-120)

2026-04-13 VulDB

Buffer Overflow A800R

7.4

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

7.4 HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Re-analysis Queued

Apr 27, 2026 - 19:07 vuln.today

cvss_changed

PoC Detected

Apr 27, 2026 - 19:05 vuln.today

Public exploit code

Analysis Generated

Apr 13, 2026 - 04:24 vuln.today

CVSS changed

Apr 13, 2026 - 04:22 NVD

8.8 (HIGH) 7.4 (HIGH)

EUVD ID Assigned

Apr 13, 2026 - 04:15 euvd

EUVD-2026-21814

Analysis Generated

Apr 13, 2026 - 04:15 vuln.today

CVE Published

Apr 13, 2026 - 03:45 nvd

HIGH 7.4

DescriptionCVE.org

A vulnerability was detected in Totolink A800R 4.1.2cu.5137_B20200730. This impacts the function setAppEasyWizardConfig in the library /lib/cste_modules/app.so. The manipulation of the argument apcliSsid results in buffer overflow. The attack can be executed remotely. The exploit is now public and may be used.

AnalysisAI

Buffer overflow in Totolink A800R router firmware 4.1.2cu.5137_B20200730 allows authenticated remote attackers to achieve arbitrary code execution with high confidentiality, integrity, and availability impact. The vulnerability resides in the setAppEasyWizardConfig function within /lib/cste_modules/app.so, triggered by malicious input to the apcliSsid parameter. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate to Totolik A800R web interface

Delivery

Send crafted setAppEasyWizardConfig request

Exploit

Inject oversized apcliSsid parameter

Execution

Overflow buffer in app.so library

Impact

Execute arbitrary code with device privileges