Sign-up

ID

VAR-202504-3185


CVE

CVE-2025-22903


TITLE

TOTOLINK  of  n600r  Stack-based buffer overflow vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2025-003868

DESCRIPTION

TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the pin parameter in the function setWiFiWpsConfig. TOTOLINK of n600r A stack-based buffer overflow vulnerability exists in the firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. TOTOLINK N600R is a wireless router produced by China's TOTOLINK Electronics. TOTOLINK N600R has a buffer overflow vulnerability. The vulnerability is caused by the pin parameter in the setWiFiWpsConfig function failing to correctly verify the length of the input data. Attackers can exploit this vulnerability to cause a denial of service

Trust: 2.16

sources: NVD: CVE-2025-22903 // JVNDB: JVNDB-2025-003868 // CNVD: CNVD-2025-12013

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2025-12013

AFFECTED PRODUCTS

vendor:totolinkmodel:n600rscope:eqversion:4.3.0cu.7647_b20210106

Trust: 1.0

vendor:totolinkmodel:n600rscope: - version: -

Trust: 0.8

vendor:totolinkmodel:n600rscope:eqversion: -

Trust: 0.8

vendor:totolinkmodel:n600rscope:eqversion:n600r firmware 4.3.0cu.7647 b20210106

Trust: 0.8

vendor:totolinkmodel:n600r v4.3.0cu.7647 b20210106scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2025-12013 // JVNDB: JVNDB-2025-003868 // NVD: CVE-2025-22903

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2025-22903
value: MEDIUM

Trust: 1.0

OTHER: JVNDB-2025-003868
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2025-12013
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2025-12013
severity: MEDIUM
baseScore: 4.6
vectorString: AV:N/AC:H/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: HIGH
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2025-22903
baseSeverity: MEDIUM
baseScore: 4.6
vectorString: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: LOW
exploitabilityScore: 1.2
impactScore: 3.4
version: 3.1

Trust: 1.0

OTHER: JVNDB-2025-003868
baseSeverity: MEDIUM
baseScore: 4.6
vectorString: CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: LOW
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2025-12013 // JVNDB: JVNDB-2025-003868 // NVD: CVE-2025-22903

PROBLEMTYPE DATA

problemtype:CWE-121

Trust: 1.0

problemtype:Stack-based buffer overflow (CWE-121) [ others ]

Trust: 0.8

sources: JVNDB: JVNDB-2025-003868 // NVD: CVE-2025-22903

EXTERNAL IDS

db:NVDid:CVE-2025-22903

Trust: 3.2

db:JVNDBid:JVNDB-2025-003868

Trust: 0.8

db:CNVDid:CNVD-2025-12013

Trust: 0.6

sources: CNVD: CNVD-2025-12013 // JVNDB: JVNDB-2025-003868 // NVD: CVE-2025-22903

REFERENCES

url:https://github.com/xyqer1/totlink-n600r-setwifiwpsconfig-stackoverflow

Trust: 2.4

url:https://nvd.nist.gov/vuln/detail/cve-2025-22903

Trust: 0.8

sources: CNVD: CNVD-2025-12013 // JVNDB: JVNDB-2025-003868 // NVD: CVE-2025-22903

SOURCES

db:CNVDid:CNVD-2025-12013
db:JVNDBid:JVNDB-2025-003868
db:NVDid:CVE-2025-22903

LAST UPDATE DATE

2025-06-12T02:11:49.911000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2025-12013date:2025-06-10T00:00:00
db:JVNDBid:JVNDB-2025-003868date:2025-04-23T02:59:00
db:NVDid:CVE-2025-22903date:2025-04-22T16:55:56.553

SOURCES RELEASE DATE

db:CNVDid:CNVD-2025-12013date:2025-06-10T00:00:00
db:JVNDBid:JVNDB-2025-003868date:2025-04-23T00:00:00
db:NVDid:CVE-2025-22903date:2025-04-15T19:16:07.090