Which versions of Totolink X5000R are affected by EUVD-2026-28528?

Totolink X5000R router firmware version 9.1.0u.6369_B20230113 contains a buffer overflow vulnerability enabling authenticated attackers to execute arbitrary code or deny service.

Is there a public PoC exploit available for EUVD-2026-28528?

Yes, a public proof-of-concept exploit is available for EUVD-2026-28528. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate EUVD-2026-28528?

Within 24 hours: Verify all Totolik X5000R devices in your environment and document firmware versions. Change all router administrative credentials to complex, unique passwords and audit recent access logs for unauthorized authentication attempts. Within 7 days: Isolate affected routers (X5000R 9.1.0u.6369_B20230113) to trusted administrative networks only; disable remote management interfaces if not operationally required; implement network segmentation to limit lateral movement if compromise occurs. Within 30 days: Contact Totolink support to confirm patch availability timeline; prepare upgrade plan for when patch is released; consider replacement with alternative vendor equipment if patch timeline is unacceptable for your risk tolerance.

Totolink X5000R EUVD-2026-28528

Q: What is the CVSS score of EUVD-2026-28528?

EUVD-2026-28528 has a CVSS 4.0 base score of 7.4 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.1%.

| CVE-2026-8137 HIGH

Classic Buffer Overflow (CWE-120)

2026-05-08 VulDB

GHSA-8cxw-g3j3-5xpx

Buffer Overflow

7.4

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

May 08, 2026 - 05:31 vuln.today

CVSS changed

May 08, 2026 - 05:22 NVD

8.8 (HIGH) 7.4 (HIGH)

CVE Published

May 08, 2026 - 04:00 nvd

HIGH 7.4

DescriptionNVD

A vulnerability has been found in Totolink X5000R 9.1.0u.6369_B20230113. This vulnerability affects the function sub_458E40 of the file /boafrm/formDdns. The manipulation of the argument submit-url leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.

AnalysisAI

Buffer overflow in Totolink X5000R 9.1.0u.6369_B20230113 router firmware allows authenticated remote attackers to execute arbitrary code or cause denial of service via crafted submit-url parameter to /boafrm/formDdns endpoint. Public exploit code exists (GitHub). …

RemediationAI

Within 24 hours: Verify all Totolik X5000R devices in your environment and document firmware versions. Change all router administrative credentials to complex, unique passwords and audit recent access logs for unauthorized authentication attempts. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

EUVD-2026-28528 vulnerability details – vuln.today

Back

Totolink X5000R EUVD-2026-28528

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

Totolink X5000R EUVD-2026-28528

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code