Stack-based Buffer Overflow in TOTOLINK EX1800T Router Software
CVE-2025-2370

8.8HIGH

Key Information:

Vendor: TOTOLINK
Status: EX1800T
Vendor: CVE Published:; 17 March 2025

Summary

A stack-based buffer overflow vulnerability exists in the configuration function setWiFiExtenderConfig of the TOTOLINK EX1800T router. This flaw allows attackers to manipulate the apcliSsid argument, potentially leading to remote exploitation of the system. Users of affected versions are advised to implement protective measures and apply available patches to ensure their devices remain secure.

References

https://github.com/kn0sky/cve/blob/main/TOTOLINK%20EX1800...

https://vuldb.com/?ctiid.299869

https://vuldb.com/?id.299869

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 17, 2025