Stack Overflow Vulnerability in TOTOLINK A3700R Router
CVE-2024-37633

Currently unrated

Key Information:

Vendor: TOTOLINK
Status: A3700r Firmware
Vendor: CVE Published:; 13 June 2024

Summary

The TOTOLINK A3700R router contains a vulnerability in its guest Wi-Fi configuration function, setWiFiGuestCfg, leading to a stack overflow through improper handling of the ssid parameter. This flaw allows an attacker to potentially execute arbitrary code or disrupt device operations, posing a significant risk to the device's integrity and network security.

References

https://github.com/s4ndw1ch136/IOT-vuln-reports/blob/main...

Timeline

Vulnerability published
Jun 13, 2024
Vulnerability Reserved
Jun 10, 2024