Post-Authentication Buffer Overflow in TOTOLINK Router Products
CVE-2022-44260
8.8HIGH
What is CVE-2022-44260?
The TOTOLINK LR350 is susceptible to a post-authentication buffer overflow vulnerability, which can be exploited via the parameters sPort or ePort in the setIpPortFilterRules function. This flaw may allow an attacker to execute arbitrary code, potentially compromising the integrity and availability of the device and the network it serves. Securing your router by updating to the latest firmware and applying recommended security practices is essential to mitigate this risk.