What is the CVSS score of EUVD-2025-17614?

EUVD-2025-17614 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.6%.

Which versions of Ex1200t Firmware are affected by EUVD-2025-17614?

TOTOLINK EX1200T routers contain a critical buffer overflow vulnerability in the HTTP POST request handler that enables remote code execution without authentication.

Is there a public PoC exploit available for EUVD-2025-17614?

Yes, a public proof-of-concept exploit is available for EUVD-2025-17614. Prioritise patching immediately. EPSS: 0.6%.

How to fix or mitigate EUVD-2025-17614?

Within 24 hours: Identify all TOTOLINK EX1200T devices in your network and isolate them from critical systems or untrusted networks. Within 7 days: Check TOTOLINK's security advisory for available firmware updates or workarounds; if none exist, consider replacing the device with a patched alternative from a different vendor or implement aggressive network-level controls. Within 30 days: Complete migration away from vulnerable TOTOLINK devices to supported equipment with active security patching.

Ex1200t Firmware EUVD-2025-17614

| CVE-2025-5907 HIGH

Buffer Overflow (CWE-119)

2025-06-10 cna@vuldb.com

Buffer Overflow TP-Link RCE Ex1200t Firmware TOTOLINK

8.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

8.8 HIGH

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 19:49 euvd

EUVD-2025-17614

Analysis Generated

Mar 14, 2026 - 19:49 vuln.today

PoC Detected

Jun 16, 2025 - 17:22 vuln.today

Public exploit code

CVE Published

Jun 10, 2025 - 01:15 nvd

HIGH 8.8

DescriptionCVE.org

A vulnerability classified as critical was found in TOTOLINK EX1200T up to 4.1.2cu.5232_B20210713. This vulnerability affects unknown code of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

AnalysisAI

Critical buffer overflow vulnerability in TOTOLINK EX1200T routers (firmware versions up to 4.1.2cu.5232_B20210713) affecting the HTTP POST request handler at the /boafrm/formFilter endpoint. An authenticated remote attacker can exploit this vulnerability to achieve remote code execution with full system compromise (confidentiality, integrity, and availability impact). The vulnerability has been publicly disclosed with exploit code available, creating immediate risk for deployed devices.

Technical ContextAI

This vulnerability resides in the HTTP POST request handler component of TOTOLINK's web management interface, specifically the /boafrm/formFilter endpoint. The root cause is classified as CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), which encompasses classic buffer overflow conditions where input data exceeds allocated buffer boundaries without proper bounds checking. The affected component likely parses form filter parameters without validating input length, allowing attackers to overflow adjacent memory regions. The vulnerability chain involves the web server processing POST requests, passing unsanitized form parameters to a vulnerable filter function that performs unsafe string or buffer operations. This is a network-facing, authenticated attack vector against the device's management interface.

RemediationAI

Immediate actions: (1) Check for firmware updates on TOTOLINK's official website or the EX1200T management interface (System > Firmware Upgrade). Upgrade to a version released after 2021-07-13 if available. (2) If no patched firmware exists for legacy EX1200T units, implement network-level mitigations: restrict access to the web management interface (port 80/443) to trusted internal networks only via firewall rules; disable remote management if enabled (Administration > Remote Management). (3) Change default/weak administrative credentials to strong, unique passwords (Administration > System Settings > Password). (4) Disable UPnP if not required (Network > UPnP). (5) Consider replacing end-of-life TOTOLINK devices with vendor-supported alternatives that receive regular security updates. Monitor TOTOLINK's security advisories and firmware release notes for official patches; contact TOTOLINK support if no patch is available for your device model.

EUVD-2025-17614 vulnerability details – vuln.today

Back

Ex1200t Firmware EUVD-2025-17614

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code