CVE-2025-8242 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability has been found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This vulnerability affects unknown code of the file /boafrm/form…
High CVSS: 7.4

CVE-2025-8242

A vulnerability has been found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr/url/vpnPassword/vpnUser leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Vendor
Totolink
Product
X15 Firmware
CWE
CWE-119
Yayın Tarihi
2025-07-27 21:15:26
Güncelleme
2025-07-29 21:13:11
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-119 X15 Firmware HIGH Totolink 2025

Referanslar

https://github.com/panda666-888/vuls/blob/main/totolink/x15/formFilter_ip6addr.md https://github.com/panda666-888/vuls/blob/main/totolink/x15/formFilter_url.md https://vuldb.com/?ctiid.317830 https://vuldb.com/?id.317830 https://vuldb.com/?submit.622661 https://vuldb.com/?submit.622662 https://vuldb.com/?submit.622664 https://vuldb.com/?submit.622665 https://www.totolink.net/ https://github.com/panda666-888/vuls/blob/main/totolink/x15/formFilter_ip6addr.md https://github.com/panda666-888/vuls/blob/main/totolink/x15/formFilter_url.md