CVE-2022-37842

Name of the Vulnerable Software and Affected Versions TOTOLINK A860R version 4.1.2cu.5182 B20201027

Description The issue is related to a buffer overflow caused by unfiltered parameters in the infostat.cgi endpoint. This can lead to a buffer overflow vulnerability.

Recommendations For TOTOLINK A860R version 4.1.2cu.5182 B20201027, consider restricting access to the infostat.cgi endpoint until a patch is available. As a temporary workaround, avoid using unfiltered parameters in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.