PT-2025-46171 · Totolink · Totolink A7000R
Published
2025-10-15
·
Updated
2025-11-10
·
CVE-2025-63153
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
TOTOLink A7000R version 9.1.0u.6115 B20201022
Description
The TOTOLink A7000R router firmware contains a stack overflow in the
ssid parameter of the urldecode function. This issue allows attackers to cause a Denial of Service (DoS) through a crafted request. The vulnerable parameter is ssid, and the vulnerable function is urldecode.Recommendations
Update to a newer version of TOTOLink A7000R firmware that addresses this issue.
Exploit
Fix
DoS
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Totolink A7000R