PT-2022-23410 · Totolink · Totolink N350Rt

Published

2022-08-25

Updated

2022-08-26

CVE-2022-36488

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions TOTOLINK N350RT version 9.3.5u.6139 B20201216

Description A stack overflow issue was discovered, which is related to the sPort parameter in the setIpPortFilterRules function.

Recommendations For version 9.3.5u.6139 B20201216, avoid using the sPort parameter in the setIpPortFilterRules function until a fix is available.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2022-36488

Affected Products

Totolink N350Rt

PT-2022-23410 · Totolink · Totolink N350Rt

CVE-2022-36488

Weakness Enumeration

Related Identifiers

Affected Products

References · 3