TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formRoute.
The vulnerability is a stack buffer overflow (stack overflow, CWE-787) in the formRoute function that handles network requests. An attacker can send a crafted request containing excessive data that exceeds the reserved buffer size on the stack. Overwriting the stack allows an attacker to take control of the program execution flow and potentially execute arbitrary code.
An attacker without any authentication can remotely execute arbitrary code on the device (RCE), which in practice means complete takeover of the router, including control over network traffic passing through the device.
Apply patches available from the manufacturer according to the references (TOTOLINK download page: https://totolink.cn/home/menu/detail.html?menu_listtpl=download&id=85&ids=36). Until an update is applied, it is recommended to restrict access to the device management interface only to trusted IP addresses and disable exposure of the admin panel to the public network.
TOTOLINK X2000R Firmware version v1.0.0-B20230221.0948.web
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTotolink X2000r
HWTotolinkwszystkie wersjeTotolink X2000r Firmware
OSTotolink1.0.0-b20230221.0948.web
Related vulnerabilities
Command injection w TOTOLINK X2000R — podatność w obsłudze przesyłania plików
Stack overflow w TOTOLINK X2000R przez funkcję formRebootSchedule
Stack overflow w TOTOLINK X2000R — podatność w funkcji formPasswordSetup
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formM...
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formW...