CVE-2025-5905
BaseFortify
Publication date: 2025-06-10
Last updated on: 2025-06-16
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| totolink | t10_firmware | 4.1.8cu.5207 |
| totolink | t10 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a buffer overflow in the TOTOLINK T10 router firmware version 4.1.8cu.5207. It occurs in the function setWiFiRepeaterCfg, specifically when the 'password' parameter in a POST request to /cgi-bin/cstecgi.cgi is manipulated with input that exceeds the buffer size. Because the input size is not properly checked, this leads to a buffer overflow condition that can cause unexpected behavior or allow execution of arbitrary code. [1, 2]
How can this vulnerability impact me? :
This vulnerability can be exploited remotely and easily to compromise the affected device. It can lead to loss of confidentiality, integrity, and availability of the router by causing unexpected behavior or allowing arbitrary code execution. Since a public proof-of-concept exploit exists, attackers can actively target devices running the vulnerable firmware, potentially gaining control over the device or disrupting its operation. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection can be performed by monitoring POST requests to the endpoint /cgi-bin/cstecgi.cgi, specifically looking for unusually large or malformed 'password' parameters that could trigger the buffer overflow. Network traffic analysis tools like Wireshark or tcpdump can be used to capture such requests. For example, using tcpdump: tcpdump -i <interface> -A 'tcp port 80 and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)' and then filtering HTTP POST requests to /cgi-bin/cstecgi.cgi. Additionally, web application scanners or custom scripts can be used to send oversized password parameters to test for vulnerability response. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected TOTOLINK T10 device running firmware version 4.1.8cu.5207 with an alternative device or firmware version that is not vulnerable, as no known countermeasures or patches currently exist. Additionally, restricting remote access to the device's management interface and monitoring for exploit attempts can reduce risk until replacement is possible. [2]