CVE-2022-37840

CRITICAL

Totolink A860r Firmware - Buffer Overflow

Title source: rule
STIX 2.1

Description

In TOTOLINK A860R V4.1.2cu.5182_B20201027, the main function in downloadfile.cgi has a buffer overflow vulnerability.

References (1)

Core 1
Core References

Scores

CVSS v3 9.8
EPSS 0.0051
EPSS Percentile 66.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-120
Status published
Products (1)
totolink/a860r_firmware 4.1.2cu.5182_b20201027
Published Sep 06, 2022
Tracked Since Feb 18, 2026