ГлавнаяУязвимости → CVE-2025-5600
9.8критическая

CVE-2025-5600

→ есть в БДУ: BDU:2025-10016 (на русском)
Описание (на английском; русское — в БДУ выше)

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This issue affects the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument LangType leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Затрагиваемое ПО
Totolink Ex1200t firmwareTotolink Ex1200t
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://kn0sinna.notion.site/TOTOLINK-EX1200T-stack-based-BufferOverflow-vulnerability-204b1876cd6e80709ce8dab4778dce55https://vuldb.com/?ctiid.311087https://vuldb.com/?id.311087https://vuldb.com/?submit.588075https://www.totolink.net/https://kn0sinna.notion.site/TOTOLINK-EX1200T-stack-based-BufferOverflow-vulnerability-204b1876cd6e80709ce8dab4778dce55