CRITICAL🇵🇱 Wersja polska

CVE-2025-70327

CVSS 9.8v3.1pub. 2026-02-23upd. 2026-02-26

TOTOLINK X5000R v9.1.0cu_2415_B20250515 contains an argument injection vulnerability in the setDiagnosisCfg handler of the /usr/sbin/lighttpd executable. The ip parameter is retrieved via websGetVar and passed to a ping command through CsteSystem without validating if the input starts with a hyphen (-). This allows remote authenticated attackers to inject arbitrary command-line options into the ping utility, potentially leading to a Denial of Service (DoS) by causing excessive resource consumption or prolonged execution.

🤖 AI Analysis
How it works

The 'ip' parameter is retrieved by the websGetVar function and passed directly to the ping command via the CsteSystem function without verification that the input does not start with a hyphen (-). The lack of this validation (CWE-88) allows an attacker to pass arbitrary command-line options to the ping tool. This results in excessive consumption of system resources or prolonged command execution (CWE-400), leading to device unavailability.

Impact

A remotely authenticated attacker can cause a denial of service (DoS) by excessive consumption of system resources or forcing prolonged process execution on the device. As a result, the device may become unavailable to authorized users.

Mitigation & patch

Apply patches available from the manufacturer according to the references. Until an update is released, it is recommended to restrict access to the device management interface to trusted hosts only and use strong, unique administrative passwords.

Who is affected

TOTOLINK X5000R with firmware version v9.1.0cu_2415_B20250515

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Totolink X5000r

    HW
    Totolink
    wszystkie wersje
  • Totolink X5000r Firmware

    OS
    Totolink
    9.1.0cu.2415_b20250515
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2025-13184CRITICAL9.8PL ✓ten sam produkt

Totolink X5000R: auth bypass umożliwiający nieautoryzowany dostęp root przez Telnet

CVE-2024-32353CRITICAL9.8PL ✓ten sam produkt

Command injection w TOTOLINK X5000R — podatność RCE przez parametr 'port'

CVE-2024-28639CRITICAL9.8PL ✓ten sam produkt

Buffer Overflow w TOTOLINK X5000R i A7000R — RCE przez pole IP

CVE-2023-36950CRITICAL9.8ten sam produkt

TOTOLINK X5000R V9.1.0u.6118_B20201102 and TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a ...

CVE-2023-36947CRITICAL9.8ten sam produkt

TOTOLINK X5000R V9.1.0u.6118_B20201102 and TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a ...