Buffer Overflow Vulnerability in TOTOLink X6000R Routers
CVE-2025-25524

5.1MEDIUM

Key Information:

Vendor

TOTOLink
Status
X6000R
Vendor
CVE Published:
11 February 2025

Badges

đź“° News Worthy

What is CVE-2025-25524?

A buffer overflow vulnerability exists in TOTOLink X6000R routers due to insufficient length verification in the handling of Wi-Fi filtering rules. This oversight can be exploited by attackers to crash the affected router or execute arbitrary commands remotely, which poses a significant security risk to users relying on these devices for network connectivity.

News Articles

favicon imageVulmon

CVE-2025-25524 Buffer Overflow in TOTOLink X6000R Routers V9.4...

Buffer Overflow in TOTOLink X6000R Routers V9.4.0cu.652_B20230116 Wi-Fi Rule Handling A buffer overflow vulnerability exists in TOTOLink X6000R routers running

References

https://gist.github.com/XiaoCurry/ce1f80afd2d8be8ca543437...

CVSS V3.1

Score:
5.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • đź“°

    First article discovered by Vulmon

  • Vulnerability published

  • Vulnerability Reserved

.