CVE-2025-67187
Unknown Unknown - Not Provided
Stack-Based Buffer Overflow in TOTOLINK A950RG Firewall Module

Publication date: 2026-02-03

Last updated on: 2026-02-10

Assigner: MITRE

Description
A stack-based buffer overflow vulnerability was identified in TOTOLINK A950RG V4.1.2cu.5204_B20210112. The flaw exists in the setIpQosRules interface of /lib/cste_modules/firewall.so where the comment parameter is not properly validated for length.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-03
Last Modified
2026-02-10
Generated
2026-06-16
AI Q&A
2026-02-04
EPSS Evaluated
2026-06-14
NVD
CVE-2025-67187
EUVD
EUVD-2025-206712
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
totolink a950rg_firmware 4.1.2cu.5204_b20210112
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

I don't know

Executive Summary

[{'type': 'paragraph', 'content': "This vulnerability is a stack-based buffer overflow found in the TOTOLINK A950RG router firmware version V4.1.2cu.5204_B20210112. It occurs in the setIpQosRules interface within the /lib/cste_modules/firewall.so file. The issue arises because the 'comment' parameter is not properly validated for its length, allowing an attacker to overflow the buffer on the stack."}] [1]

Impact Analysis

A stack-based buffer overflow can allow an attacker to execute arbitrary code, crash the device, or cause denial of service. Exploiting this vulnerability could enable an attacker to gain unauthorized control over the affected TOTOLINK A950RG device, potentially compromising network security and stability.

Detection Guidance

Detection of this vulnerability involves checking for the presence of the vulnerable TOTOLINK A950RG firmware version and monitoring the setIpQosRules interface for suspicious activity related to the comment parameter.

Specific commands or scripts to detect exploitation attempts or the vulnerable interface are not explicitly provided in the available resources.

Mitigation Strategies

Immediate mitigation steps are not detailed in the provided information.

General best practices would include updating the device firmware to a version where this vulnerability is fixed, restricting access to the vulnerable interface, and monitoring network traffic for abnormal behavior related to the setIpQosRules interface.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-67187. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart