CVE-2025-5908

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://github.com/byxs0x0/cve2/blob/main/4.md", "name": "https://github.com/byxs0x0/cve2/blob/main/4.md", "tags": ["Exploit", "Third Party Advisory"], "refsource": ""}, {"url": "https://vuldb.com/?ctiid.311681", "name": "VDB-311681 | CTI Indicators (IOB, IOC, IOA)", "tags": ["Permissions Required", "VDB Entry"], "refsource": ""}, {"url": "https://vuldb.com/?id.311681", "name": "VDB-311681 | TOTOLINK EX1200T HTTP POST Request formIpQoS buffer overflow", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://vuldb.com/?submit.592269", "name": "Submit #592269 | TOTOLINK EX1200T V4.1.2cu.5232_B20210713 Buffer Overflow", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://www.totolink.net/", "name": "https://www.totolink.net/", "tags": ["Product"], "refsource": ""}, {"url": "https://github.com/byxs0x0/cve2/blob/main/4.md", "name": "https://github.com/byxs0x0/cve2/blob/main/4.md", "tags": ["Exploit", "Third Party Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T up to 4.1.2cu.5232_B20210713. This issue affects some unknown processing of the file /boafrm/formIpQoS of the component HTTP POST Request Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-120"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-5908", "ASSIGNER": "cna@vuldb.com"}}, "impact": {}, "publishedDate": "2025-06-10T01:15Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:totolink:ex1200t_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "4.1.2cu.5232_b20210713"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:totolink:ex1200t:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-06-16T17:21Z"}