CVE-2025-55586

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 4.0.0-B20230531.1404

Description: The device contains a buffer overflow in the url parameter at the /boafrm/formFilter API endpoint. This issue allows attackers to cause a Denial of Service (DoS) via a crafted input.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

BDU:2025-11136

CVE-2025-55586

Affected Products

Totolink A3002Ru

CVE-2025-55586

Weakness Enumeration

Related Identifiers

Affected Products

References · 8