CVE-2025-5907

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://github.com/byxs0x0/cve2/blob/main/3.md", "name": "https://github.com/byxs0x0/cve2/blob/main/3.md", "tags": ["Exploit", "Third Party Advisory"], "refsource": ""}, {"url": "https://vuldb.com/?ctiid.311680", "name": "VDB-311680 | CTI Indicators (IOB, IOC, IOA)", "tags": ["VDB Entry", "Permissions Required"], "refsource": ""}, {"url": "https://vuldb.com/?id.311680", "name": "VDB-311680 | TOTOLINK EX1200T HTTP POST Request formFilter buffer overflow", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://vuldb.com/?submit.592267", "name": "Submit #592267 | TOTOLINK EX1200T V4.1.2cu.5232_B20210713 Buffer Overflow", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://www.totolink.net/", "name": "https://www.totolink.net/", "tags": ["Product"], "refsource": ""}, {"url": "https://github.com/byxs0x0/cve2/blob/main/3.md", "name": "https://github.com/byxs0x0/cve2/blob/main/3.md", "tags": ["Exploit", "Third Party Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A vulnerability classified as critical was found in TOTOLINK EX1200T up to 4.1.2cu.5232_B20210713. This vulnerability affects unknown code of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-120"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-5907", "ASSIGNER": "cna@vuldb.com"}}, "impact": {}, "publishedDate": "2025-06-10T01:15Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:totolink:ex1200t_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "4.1.2cu.5232_b20210713"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:totolink:ex1200t:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-06-16T17:22Z"}