CVE-2026-7218

CVSS v3.1

7.2

High

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function is cmd string valid of the file /boafrm/formWsc of the component libapmib.so. Performing a manipulation of the argument localPin results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and may be used.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-120

Related Identifiers

CVE-2026-7218

Affected Products

Rt-N300

CVE-2026-7218

Weakness Enumeration

Related Identifiers

Affected Products

References · 6