Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-25524

Buffer overflow vulnerability in TOTOLink X6000R routers V9.4.0cu.652_B20230116 due to the lack of length verification, which is related to the addition of Wi-Fi filtering rules. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands.

Published

2025-02-11T19:15:19.110

Last Modified

2025-04-29T16:22:26.843

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.1 (MEDIUM)

Weaknesses

Type: Secondary
CWE-120

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	totolink	x6000r_firmware	9.4.0cu.652_b20230116	Yes
Hardware	totolink	x6000r	-	No

References

https://gist.github.com/XiaoCurry/ce1f80afd2d8be8ca543437f16eae96b Broken Link ([email protected])