CVE-2025-60699

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions TOTOLINK A950RG Router firmware versions prior to V5.9c.4592 B20191022 ALL

Description A buffer overflow issue exists in the global.so binary of the TOTOLINK A950RG Router firmware. The getSaveConfig function retrieves the http host parameter using websGetVar and copies it into a stack buffer (v13) with strcpy() without checking the length of the input. A remote, unauthenticated attacker can exploit this by sending a crafted HTTP request to the router’s web interface, potentially achieving arbitrary code execution.

Recommendations Update the TOTOLINK A950RG Router firmware to version V5.9c.4592 B20191022 ALL or a later version.

Exploit

Fix

RCE

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121

Related Identifiers

BDU:2025-15916

CVE-2025-60699

Affected Products

Totolink A950Rg Router

CVE-2025-60699

Weakness Enumeration

Related Identifiers

Affected Products

References · 9