CVE-2025-12258: Stack-based Buffer Overflow in TOTOLINK A3300R
A vulnerability was detected in TOTOLINK A3300R 17.0.0cu.557_B20221024. Impacted is the function setOpModeCfg of the file /cgi-bin/cstecgi.cg of the component POST Parameter Handler. The manipulation of the argument opmode results in stack-based buffer overflow. The attack may be performed from remote.
CVE-2025-12258: Stack-based Buffer Overflow in TOTOLINK A3300R
Description
A vulnerability was detected in TOTOLINK A3300R 17.0.0cu.557_B20221024. Impacted is the function setOpModeCfg of the file /cgi-bin/cstecgi.cg of the component POST Parameter Handler. The manipulation of the argument opmode results in stack-based buffer overflow. The attack may be performed from remote.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-10-26T05:37:38.508Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 68ff4783bbaf5d265c856c68
Added to database: 10/27/2025, 10:20:51 AM
Last updated: 10/27/2025, 10:21:14 AM
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2025-12257: SQL Injection in SourceCodester Online Student Result System
MediumCVE-2025-12256: SQL Injection in code-projects Online Event Judging System
MediumCVE-2025-8432: CWE-276 Incorrect Default Permissions in Centreon Infra Monitoring
HighCVE-2025-12261: SQL Injection in CodeAstro Gym Management System
MediumCVE-2025-12260: Stack-based Buffer Overflow in TOTOLINK A3300R
HighActions
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.