CVE-2025-4827 – TOTOLINK A702R/A3002R/A3002RU HTTP POST Request Handler Buffer Overflow

May 17, 2025

CVE ID : CVE-2025-4827

Published : May 17, 2025, 3:15 p.m. | 1 hour, 53 minutes ago

Description : A vulnerability, which was classified as critical, was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/formSaveConfig of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4829 – TOTOLINK A702R/A3002R/A3002RU HTTP POST Request Handler Buffer Overflow Vulnerability

Next Article CVE-2025-4101 – MultiVendorX WooCommerce Multivendor Marketplace Solutions Unauthenticated Data Deletion Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Bing Search APIs to be “decommissioned completely” as Microsoft urges developers to use its Azure agentic AI alternative

Microsoft might kill the Surface Laptop Studio as production is quietly halted

Minecraft licensing robbed us of this controversial NFL schedule release video

The power of generators

The power of generators

Simplify Factory Associations with Laravel’s UseFactory Attribute

This Week in Laravel: React Native, PhpStorm Junie, and more

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Bing Search APIs to be “decommissioned completely” as Microsoft urges developers to use its Azure agentic AI alternative

Microsoft might kill the Surface Laptop Studio as production is quietly halted

CVE-2025-4827 – TOTOLINK A702R/A3002R/A3002RU HTTP POST Request Handler Buffer Overflow

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4831 – TOTOLINK HTTP POST Request Handler Buffer Overflow Vulnerability

Audit Exposes Security Lapses in FBIâ€™s Handling of Sensitive Storage Media

CVE-2025-30009 – SAP SRM Live Auction Cockpit Java Applet Remote Code Execution Vulnerability

Top 6 Craigslist scams: Donâ€™t fall for these tricks

Microsoft explains why it’s better to use a local account on Windows 11 â€” perhaps on purpose

Development Release: Fedora 42 Beta

CVE-2025-43964 – LibRaw Unvalidated Memory Access Vulnerability

Rilasciato Celluloid 0.28: un lettore video open source basato su mpv

Call of Duty dropped a new trailer for Season 3 with the focus back on fan-favorite characters

CVE-2025-4827 – TOTOLINK A702R/A3002R/A3002RU HTTP POST Request Handler Buffer Overflow

Related Posts