Skip to main content

Totolink N300RH CVE-2026-7749

| EUVDEUVD-2026-26941 HIGH
Classic Buffer Overflow (CWE-120)
2026-05-04 VulDB
7.4
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
7.4 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

8
PoC Detected
May 04, 2026 - 15:17 vuln.today
Public exploit code
Analysis Updated
May 04, 2026 - 10:28 vuln.today
v2 (cvss_changed)
Re-analysis Queued
May 04, 2026 - 10:22 vuln.today
cvss_changed
CVSS changed
May 04, 2026 - 10:22 NVD
8.8 (HIGH) 7.4 (HIGH)
Analysis Generated
May 04, 2026 - 10:00 vuln.today
EUVD ID Assigned
May 04, 2026 - 09:45 euvd
EUVD-2026-26941
Analysis Generated
May 04, 2026 - 09:45 vuln.today
CVE Published
May 04, 2026 - 08:45 nvd
HIGH 7.4

DescriptionCVE.org

A security vulnerability has been detected in Totolink N300RH 3.2.4-B20220812. This affects the function setWanConfig of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument priDns leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.

AnalysisAI

Buffer overflow in Totolink N300RH router firmware 3.2.4-B20220812 allows authenticated remote attackers to achieve complete device compromise via crafted DNS parameter in WAN configuration requests. The vulnerability exists in the setWanConfig function within /cgi-bin/cstecgi.cgi POST handler, exploitable by manipulating the priDns argument. Public exploit code is available (CVSS E:P), and CVSS 4.0 score of 7.4 reflects high confidentiality, integrity, and availability impact on the vulnerable device with no cross-scope effects.

Technical ContextAI

This is a classic stack-based buffer overflow (CWE-120) in embedded router CGI handling code. The setWanConfig function in the cstecgi.cgi POST request handler fails to properly validate the length of the priDns (primary DNS server) parameter before copying it into a fixed-size buffer. Totolink N300RH is a wireless router running proprietary firmware version 3.2.4-B20220812. The vulnerability affects the web management interface's WAN configuration module, which processes network setup parameters. Buffer overflows in CGI handlers on SOHO routers are particularly critical because they often run with root privileges and handle network-facing configuration interfaces. The affected CPE is cpe:2.3:a:totolink:n300rh:*:*:*:*:*:*:*:*, indicating the vulnerability is in the application layer firmware rather than hardware-specific.

RemediationAI

No vendor-released security patch has been identified at time of analysis. Check Totolink's official website (https://www.totolink.net/) and support channels for firmware updates newer than 3.2.4-B20220812, though no specific fixed version is documented in available advisories. Until patching is possible, implement these compensating controls: (1) Disable remote management access to the router's web interface entirely - restricts attack surface to LAN-only, eliminating network-based remote exploitation but requires physical or VPN access for administration; (2) Change default administrative credentials to complex passwords (16+ characters) to prevent initial authentication - does not fix the vulnerability but raises attacker cost significantly; (3) Restrict administrative interface access to specific trusted IP addresses via firewall rules if remote management is required - reduces exposure but depends on static IP availability; (4) Monitor authentication logs for repeated failed login attempts or unusual administrative sessions. If business requirements allow, consider replacing the device with a currently-supported router model from vendors with active security update programs, as this appears to be an end-of-life or minimally-supported product line.

Share

CVE-2026-7749 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy