CRITICAL🇵🇱 Wersja polska

CVE-2024-28639

CVSS 9.8v3.1pub. 2024-03-16upd. 2025-03-26

Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115-B20201022, allow remote attackers to execute arbitrary code and cause a denial of service (DoS) via the IP field.

🤖 AI Analysis
How it works

The vulnerability results from improper input validation in the IP field (CWE-120 — classic buffer overflow). An attacker can send specially crafted data to the vulnerable field, causing a buffer overflow in the device's memory. The exploit does not require authentication or user interaction, and the attack can be conducted remotely over the network.

Impact

An attacker can execute arbitrary code on the device (RCE) or cause it to become unavailable (DoS). In the worst-case scenario, complete takeover of the router is possible.

Mitigation & patch

Apply patches available from the manufacturer according to the references provided. If an update is not available, it is recommended to isolate devices from public network access, disable unnecessary remote management services, and implement firewall rules restricting device access only to trusted IP addresses.

Who is affected

TOTOLINK X5000R with firmware version V9.1.0u.6118-B20201102 and TOTOLINK A7000R with firmware version V9.1.0u.6115-B20201022.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Totolink A7000r

    HW
    Totolink
    wszystkie wersje
  • Totolink A7000r Firmware

    OS
    Totolink
    9.1.0u.6115_b20201022
  • Totolink X5000r

    HW
    Totolink
    wszystkie wersje
  • Totolink X5000r Firmware

    OS
    Totolink
    9.1.0u.6118_b20201102
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEDoSMemory
CWE
References

Related vulnerabilities

CVE-2025-70327CRITICAL9.8PL ✓ten sam produkt

TOTOLINK X5000R — argument injection w setDiagnosisCfg prowadzący do DoS

CVE-2025-13184CRITICAL9.8PL ✓ten sam produkt

Totolink X5000R: auth bypass umożliwiający nieautoryzowany dostęp root przez Telnet

CVE-2025-51452CRITICAL9.8PL ✓ten sam produkt

TOTOLINK A7000R – bypass uwierzytelnienia przez formLoginAuth.htm

CVE-2024-32353CRITICAL9.8PL ✓ten sam produkt

Command injection w TOTOLINK X5000R — podatność RCE przez parametr 'port'

CVE-2023-49417CRITICAL9.8PL ✓ten sam produkt

Stack overflow w TOTOLink A7000R — funkcja setOpModeCfg