cnvd - cnvd-2025-17523

CNVD-2025-17523

Vulnerability from cnvd - Published: 2025-08-04

Title

TOTOLINK X15 devicemac1参数缓冲区溢出漏洞

Description

TOTOLINK X15是中国吉翁电子（TOTOLINK）公司生产的网络无线扩展器，主要用于扩展Wi-Fi覆盖范围。该设备支持Wi-Fi 6技术，提供AX1500无线传输速率，适用于家庭和小型办公场景。 TOTOLINK X15存在缓冲区溢出漏洞，该漏洞源于HTTP POST请求处理组件中/boafrm/formMapDel文件对devicemac1参数的处理存在缺陷。攻击者可利用该漏洞导致设备拒绝服务或执行任意代码。

Severity

高

Patch Name

TOTOLINK X15 devicemac1参数缓冲区溢出漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级程序修复该安全问题，详情见厂商官网： https://www.totolink.net/home/menu/detail/menu_listtpl/download/id/253/ids/36.html

Reference

https://vuldb.com/?id.317831 https://vuldb.com/?ctiid.317831 https://vuldb.com/?submit.622691 https://github.com/panda666-888/vuls/blob/main/totolink/x15/formMapDel.md https://www.totolink.net/

Impacted products

Name
TOTOLINK X15 1.0.0B20230714.1105

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2025-8243",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2025-8243"
    }
  },
  "description": "TOTOLINK X15\u662f\u4e2d\u56fd\u5409\u7fc1\u7535\u5b50\uff08TOTOLINK\uff09\u516c\u53f8\u751f\u4ea7\u7684\u7f51\u7edc\u65e0\u7ebf\u6269\u5c55\u5668\uff0c\u4e3b\u8981\u7528\u4e8e\u6269\u5c55Wi-Fi\u8986\u76d6\u8303\u56f4\u3002\u8be5\u8bbe\u5907\u652f\u6301Wi-Fi 6\u6280\u672f \uff0c\u63d0\u4f9bAX1500\u65e0\u7ebf\u4f20\u8f93\u901f\u7387\uff0c\u9002\u7528\u4e8e\u5bb6\u5ead\u548c\u5c0f\u578b\u529e\u516c\u573a\u666f\u3002\n\nTOTOLINK X15\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eHTTP POST\u8bf7\u6c42\u5904\u7406\u7ec4\u4ef6\u4e2d/boafrm/formMapDel\u6587\u4ef6\u5bf9devicemac1\u53c2\u6570\u7684\u5904\u7406\u5b58\u5728\u7f3a\u9677\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u8bbe\u5907\u62d2\u7edd\u670d\u52a1\u6216\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u7a0b\u5e8f\u4fee\u590d\u8be5\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u89c1\u5382\u5546\u5b98\u7f51\uff1a\r\nhttps://www.totolink.net/home/menu/detail/menu_listtpl/download/id/253/ids/36.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-17523",
  "openTime": "2025-08-04",
  "patchDescription": "TOTOLINK X15\u662f\u4e2d\u56fd\u5409\u7fc1\u7535\u5b50\uff08TOTOLINK\uff09\u516c\u53f8\u751f\u4ea7\u7684\u7f51\u7edc\u65e0\u7ebf\u6269\u5c55\u5668\uff0c\u4e3b\u8981\u7528\u4e8e\u6269\u5c55Wi-Fi\u8986\u76d6\u8303\u56f4\u3002\u8be5\u8bbe\u5907\u652f\u6301Wi-Fi 6\u6280\u672f \uff0c\u63d0\u4f9bAX1500\u65e0\u7ebf\u4f20\u8f93\u901f\u7387\uff0c\u9002\u7528\u4e8e\u5bb6\u5ead\u548c\u5c0f\u578b\u529e\u516c\u573a\u666f\u3002\r\n\r\nTOTOLINK X15\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eHTTP POST\u8bf7\u6c42\u5904\u7406\u7ec4\u4ef6\u4e2d/boafrm/formMapDel\u6587\u4ef6\u5bf9devicemac1\u53c2\u6570\u7684\u5904\u7406\u5b58\u5728\u7f3a\u9677\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u8bbe\u5907\u62d2\u7edd\u670d\u52a1\u6216\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "TOTOLINK X15 devicemac1\u53c2\u6570\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "TOTOLINK X15 1.0.0B20230714.1105"
  },
  "referenceLink": "https://vuldb.com/?id.317831\r\nhttps://vuldb.com/?ctiid.317831\r\nhttps://vuldb.com/?submit.622691\r\nhttps://github.com/panda666-888/vuls/blob/main/totolink/x15/formMapDel.md\r\nhttps://www.totolink.net/",
  "serverity": "\u9ad8",
  "submitTime": "2025-07-28",
  "title": "TOTOLINK X15 devicemac1\u53c2\u6570\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e"
}

CVE-2025-8243 (GCVE-0-2025-8243)

Vulnerability from cvelistv5 – Published: 2025-07-27 21:32 – Updated: 2025-07-28 17:12

Summary

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This issue affects some unknown processing of the file /boafrm/formMapDel of the component HTTP POST Request Handler. The manipulation of the argument devicemac1 leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity ?

8.7 (High)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R

CWE

CWE-120 - Buffer Overflow
CWE-119 - Memory Corruption

Assigner

VulDB

References

URL

Tags

	https://vuldb.com/?id.317831	vdb-entrytechnical-description
	https://vuldb.com/?ctiid.317831	signaturepermissions-required
	https://vuldb.com/?submit.622691	third-party-advisory
	https://github.com/panda666-888/vuls/blob/main/to…	exploit
	https://www.totolink.net/	broken-linkproduct

Impacted products

	Vendor	Product	Version
	TOTOLINK	X15	Affected: 1.0.0-B20230714.1105

Credits

panda_0x1 (VulDB User)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-8243",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-07-28T17:12:41.447659Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-07-28T17:12:52.220Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "modules": [
            "HTTP POST Request Handler"
          ],
          "product": "X15",
          "vendor": "TOTOLINK",
          "versions": [
            {
              "status": "affected",
              "version": "1.0.0-B20230714.1105"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "panda_0x1 (VulDB User)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This issue affects some unknown processing of the file /boafrm/formMapDel of the component HTTP POST Request Handler. The manipulation of the argument devicemac1 leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used."
        },
        {
          "lang": "de",
          "value": "Eine kritische Schwachstelle wurde in TOTOLINK X15 1.0.0-B20230714.1105 gefunden. Es geht hierbei um eine nicht n\u00e4her spezifizierte Funktion der Datei /boafrm/formMapDel der Komponente HTTP POST Request Handler. Durch Manipulieren des Arguments devicemac1 mit unbekannten Daten kann eine buffer overflow-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk angegangen werden. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
            "version": "4.0"
          }
        },
        {
          "cvssV3_1": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
            "version": "3.1"
          }
        },
        {
          "cvssV3_0": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
            "version": "3.0"
          }
        },
        {
          "cvssV2_0": {
            "baseScore": 9,
            "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR",
            "version": "2.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-120",
              "description": "Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-119",
              "description": "Memory Corruption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-07-27T21:32:17.124Z",
        "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "shortName": "VulDB"
      },
      "references": [
        {
          "name": "VDB-317831 | TOTOLINK X15 HTTP POST Request formMapDel buffer overflow",
          "tags": [
            "vdb-entry",
            "technical-description"
          ],
          "url": "https://vuldb.com/?id.317831"
        },
        {
          "name": "VDB-317831 | CTI Indicators (IOB, IOC, IOA)",
          "tags": [
            "signature",
            "permissions-required"
          ],
          "url": "https://vuldb.com/?ctiid.317831"
        },
        {
          "name": "Submit #622691 | TOTOLINK X15 V1.0.0-B20230714.1105 Buffer Overflow",
          "tags": [
            "third-party-advisory"
          ],
          "url": "https://vuldb.com/?submit.622691"
        },
        {
          "tags": [
            "exploit"
          ],
          "url": "https://github.com/panda666-888/vuls/blob/main/totolink/x15/formMapDel.md"
        },
        {
          "tags": [
            "broken-link",
            "product"
          ],
          "url": "https://www.totolink.net/"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2025-07-26T00:00:00.000Z",
          "value": "Advisory disclosed"
        },
        {
          "lang": "en",
          "time": "2025-07-26T02:00:00.000Z",
          "value": "VulDB entry created"
        },
        {
          "lang": "en",
          "time": "2025-07-26T16:01:44.000Z",
          "value": "VulDB entry last update"
        }
      ],
      "title": "TOTOLINK X15 HTTP POST Request formMapDel buffer overflow"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
    "assignerShortName": "VulDB",
    "cveId": "CVE-2025-8243",
    "datePublished": "2025-07-27T21:32:17.124Z",
    "dateReserved": "2025-07-26T13:56:27.026Z",
    "dateUpdated": "2025-07-28T17:12:52.220Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2025-17523

CVE-2025-8243 (GCVE-0-2025-8243)

Tags

Sightings

Nomenclature