CRITICAL🇵🇱 Wersja polska

CVE-2024-37635

CVSS 9.8v3.1pub. 2024-06-13upd. 2024-11-21

TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiBasicCfg

🤖 AI Analysis
How it works

The attacker sends a specially crafted network request to the device containing an excessively long value of the ssid parameter, passed to the setWiFiBasicCfg function. This function does not properly verify the length of input data, leading to a stack buffer overflow (stack overflow, CWE-121). Overwriting the stack allows the attacker to hijack control of the program's execution flow.

Impact

An unauthenticated attacker operating remotely over the network can lead to arbitrary code execution on the device (RCE) or its unavailability, which in practice means complete takeover of the router.

Mitigation & patch

Patches available from the manufacturer should be applied according to the references. Until an update is applied, it is recommended to restrict access to the device management interface exclusively to trusted hosts and isolate the device from the public Internet.

Who is affected

TOTOLINK A3700R with firmware version V9.1.2u.6165_20211012

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Totolink A3700r

    HW
    Totolink
    wszystkie wersje
  • Totolink A3700r Firmware

    OS
    Totolink
    9.1.2u.6165_20211012
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-42543CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w TOTOLINK A3700R — parametr http_host w funkcji loginauth

CVE-2024-42545CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w parametrze ssid funkcji setWizardCfg — TOTOLINK A3700R

CVE-2024-37637CRITICAL9.8PL ✓ten sam produkt

Stack overflow w TOTOLINK A3700R — funkcja setWizardCfg (ssid5g)

CVE-2024-37632CRITICAL9.8PL ✓ten sam produkt

Stack overflow w TOTOLINK A3700R — podatność w funkcji loginAuth

CVE-2024-37634CRITICAL9.8PL ✓ten sam produkt

Stack overflow w TOTOLINK A3700R — funkcja setWiFiEasyCfg (parametr ssid)