Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
8DescriptionCVE.org
A security vulnerability has been detected in Totolink N300RH 3.2.4-B20220812. This affects the function setWanConfig of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument priDns leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.
AnalysisAI
Buffer overflow in Totolink N300RH router firmware 3.2.4-B20220812 allows authenticated remote attackers to achieve complete device compromise via crafted DNS parameter in WAN configuration requests. The vulnerability exists in the setWanConfig function within /cgi-bin/cstecgi.cgi POST handler, exploitable by manipulating the priDns argument. Public exploit code is available (CVSS E:P), and CVSS 4.0 score of 7.4 reflects high confidentiality, integrity, and availability impact on the vulnerable device with no cross-scope effects.
Technical ContextAI
This is a classic stack-based buffer overflow (CWE-120) in embedded router CGI handling code. The setWanConfig function in the cstecgi.cgi POST request handler fails to properly validate the length of the priDns (primary DNS server) parameter before copying it into a fixed-size buffer. Totolink N300RH is a wireless router running proprietary firmware version 3.2.4-B20220812. The vulnerability affects the web management interface's WAN configuration module, which processes network setup parameters. Buffer overflows in CGI handlers on SOHO routers are particularly critical because they often run with root privileges and handle network-facing configuration interfaces. The affected CPE is cpe:2.3:a:totolink:n300rh:*:*:*:*:*:*:*:*, indicating the vulnerability is in the application layer firmware rather than hardware-specific.
RemediationAI
No vendor-released security patch has been identified at time of analysis. Check Totolink's official website (https://www.totolink.net/) and support channels for firmware updates newer than 3.2.4-B20220812, though no specific fixed version is documented in available advisories. Until patching is possible, implement these compensating controls: (1) Disable remote management access to the router's web interface entirely - restricts attack surface to LAN-only, eliminating network-based remote exploitation but requires physical or VPN access for administration; (2) Change default administrative credentials to complex passwords (16+ characters) to prevent initial authentication - does not fix the vulnerability but raises attacker cost significantly; (3) Restrict administrative interface access to specific trusted IP addresses via firewall rules if remote management is required - reduces exposure but depends on static IP availability; (4) Monitor authentication logs for repeated failed login attempts or unusual administrative sessions. If business requirements allow, consider replacing the device with a currently-supported router model from vendors with active security update programs, as this appears to be an end-of-life or minimally-supported product line.
OS command injection in the Totolink N300RH router (firmware 6.1c.1353_B20190305) allows remote unauthenticated attacker
Stack-based buffer overflow in the Totolink N300RH router (firmware 6.1c.1353_B20190305) allows remote attackers to corr
Remote unauthenticated attackers can execute arbitrary code on Totolink N300RH routers version 3.2.4-B20220812 by sendin
Remote authenticated attackers can execute arbitrary code on Totolink N300RH 3.2.4-B20220812 routers via buffer overflow
Buffer overflow in Totolink N300RH router firmware 3.2.4-B20220812 enables authenticated remote attackers to achieve cod
Remote code execution in Totolink N300RH firmware 6.1c.1353_B20190305 allows unauthenticated network attackers to execut
External file inclusion in Totolink N300RH firmware 6.1c.1353_B20190305 allows remote unauthenticated attackers to manip
Same weakness CWE-120 – Classic Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-26941