TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow in the url parameter at /boafrm/formFilter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
References
| Link | Resource |
|---|---|
| https://github.com/goldenGlow21/softwares_PoC/blob/main/A3002R_V4/Boa%20-%20BOF/formFilter%20PoC.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
21 Aug 2025, 14:10
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Totolink a3002r Firmware
Totolink a3002r Totolink |
|
| CPE | cpe:2.3:o:totolink:a3002r_firmware:4.0.0-b20230531.1404:*:*:*:*:*:*:* cpe:2.3:h:totolink:a3002r:-:*:*:*:*:*:*:* |
|
| Summary |
|
|
| References | () https://github.com/goldenGlow21/softwares_PoC/blob/main/A3002R_V4/Boa%20-%20BOF/formFilter%20PoC.md - Exploit, Third Party Advisory |
18 Aug 2025, 21:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-400 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
18 Aug 2025, 20:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-08-18 20:15
Updated : 2025-08-21 14:10
NVD link : CVE-2025-55586
Mitre link : CVE-2025-55586
CVE.ORG link : CVE-2025-55586
JSON object : View
Products Affected
totolink
- a3002r
- a3002r_firmware
CWE
CWE-400
Uncontrolled Resource Consumption