TOTOLINK A3700R v9.1.2u.5822_B20200513 has a buffer overflow vulnerability in the ssid parameter in setWizardCfg function.
The vulnerability results from insufficient validation of input data length for the ssid parameter in the setWizardCfg function (CWE-120 — classic buffer overflow). An attacker can send a specially crafted request to the device containing excessive data in the ssid field, leading to buffer overflow in memory. This can result in overwriting critical memory areas and executing arbitrary code.
An attacker can remotely and without authentication gain full control over the device, including the ability to read and modify data and disrupt its operation (loss of confidentiality, integrity, and availability).
Patches available from the manufacturer should be applied according to the references. If an update is not available, it is recommended to restrict access to the device management interface exclusively to trusted local networks and disable remote access over the internet.
TOTOLINK A3700R with firmware version v9.1.2u.5822_B20200513
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTotolink A3700r
HWTotolinkwszystkie wersjeTotolink A3700r Firmware
OSTotolink9.1.2u.5822_b20200513
Related vulnerabilities
Buffer overflow w TOTOLINK A3700R — parametr http_host w funkcji loginauth
Stack overflow w TOTOLINK A3700R — funkcja setWizardCfg (ssid5g)
Stack overflow w TOTOLINK A3700R — podatność w funkcji loginAuth
Stack overflow w TOTOLINK A3700R — funkcja setWiFiBasicCfg (ssid)
Stack overflow w TOTOLINK A3700R — funkcja setWiFiEasyCfg (parametr ssid)