PT-2026-58102 · Totolink+1 · Nr1800X+1

Fuguang

·

Published

2026-07-14

·

Updated

2026-07-15

·

CVE-2026-15701

CVSS v2.0

10

Critical

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Totolink NR1800X version 9.1.0u.6279 B20210910
Description A stack-based buffer overflow occurs in the Form Logout() function within the /formLogout.htm file of the lighttpd component. This issue is triggered by the manipulation of the Host argument and can be exploited remotely.
Recommendations Update Totolink NR1800X version 9.1.0u.6279 B20210910 to a patched version.

Exploit

Fix

Buffer Overflow

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-15701

Affected Products

Nr1800X
Lighttpd