Details of VAR-202504-3339

ID

VAR-202504-3339

CVE

CVE-2025-3988

TITLE

TOTOLINK of N150RT Buffer error vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2025-004475

DESCRIPTION

A vulnerability classified as critical has been found in TOTOLINK N150RT 3.4.0-B20190525. Affected is an unknown function of the file /boafrm/formPortFw. The manipulation of the argument service_type leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. TOTOLINK of N150RT The firmware contains a buffer error vulnerability and a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. TOTOLINK N150RT is a wireless router from China's TOTOLINK Electronics. TOTOLINK N150RT has a buffer overflow vulnerability, which is caused by the parameter service_type in the file /boafrm/formPortFw failing to correctly verify the length of the input data. Attackers can exploit this vulnerability to execute arbitrary code on the system or cause a denial of service

Trust: 2.16

sources: NVD: CVE-2025-3988 // JVNDB: JVNDB-2025-004475 // CNVD: CNVD-2025-09852

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-09852

AFFECTED PRODUCTS

vendor:	totolink	model:	n150rt	scope:	eq	version:	3.4.0-b20190525	Trust: 1.0
vendor:	totolink	model:	n150rt	scope:	eq	version:	n150rt firmware 3.4.0-b20190525	Trust: 0.8
vendor:	totolink	model:	n150rt	scope:	eq	version:	-	Trust: 0.8
vendor:	totolink	model:	n150rt	scope:	-	version:	-	Trust: 0.8
vendor:	totolink	model:	n150rt 3.4.0-b20190525	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2025-09852 // JVNDB: JVNDB-2025-004475 // NVD: CVE-2025-3988

CVSS

SEVERITY

CVSSV2

CVSSV3

cna@vuldb.com:	CVE-2025-3988
value:	HIGH
Trust: 1.0
OTHER:	JVNDB-2025-004475
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2025-09852
value:	HIGH
Trust: 0.6

cna@vuldb.com:	CVE-2025-3988
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
OTHER:	JVNDB-2025-004475
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2025-09852
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

cna@vuldb.com:	CVE-2025-3988
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 1.0
OTHER:	JVNDB-2025-004475
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2025-09852 // JVNDB: JVNDB-2025-004475 // NVD: CVE-2025-3988

PROBLEMTYPE DATA

problemtype:	CWE-120	Trust: 1.0
problemtype:	CWE-119	Trust: 1.0
problemtype:	Buffer error (CWE-119) [ others ]	Trust: 0.8
problemtype:	Classic buffer overflow (CWE-120) [ others ]	Trust: 0.8
problemtype:	Classic buffer overflow (CWE-120) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2025-004475 // NVD: CVE-2025-3988

PATCH

title:

Patch for TOTOLINK N150RT /boafrm/formPortFw file buffer overflow vulnerability

url:

https://www.cnvd.org.cn/patchInfo/show/687731

Trust: 0.6

sources: CNVD: CNVD-2025-09852

EXTERNAL IDS

db:	NVD	id:	CVE-2025-3988	Trust: 3.2
db:	VULDB	id:	306324	Trust: 1.8
db:	JVNDB	id:	JVNDB-2025-004475	Trust: 0.8
db:	CNVD	id:	CNVD-2025-09852	Trust: 0.6

sources: CNVD: CNVD-2025-09852 // JVNDB: JVNDB-2025-004475 // NVD: CVE-2025-3988

REFERENCES

url:	https://github.com/fizz-is-on-the-way/iot_vuls/tree/main/n150rt/bufferoverflow_formportfw	Trust: 1.8
url:	https://vuldb.com/?id.306324	Trust: 1.8
url:	https://vuldb.com/?submit.557939	Trust: 1.8
url:	https://www.totolink.net/	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2025-3988	Trust: 1.4
url:	https://vuldb.com/?ctiid.306324	Trust: 1.0

sources: CNVD: CNVD-2025-09852 // JVNDB: JVNDB-2025-004475 // NVD: CVE-2025-3988

SOURCES

db:	CNVD	id:	CNVD-2025-09852
db:	JVNDB	id:	JVNDB-2025-004475
db:	NVD	id:	CVE-2025-3988

LAST UPDATE DATE

2025-05-17T23:17:00.047000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-09852	date:	2025-05-15T00:00:00
db:	JVNDB	id:	JVNDB-2025-004475	date:	2025-05-08T07:19:00
db:	NVD	id:	CVE-2025-3988	date:	2025-05-07T18:29:25.460

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-09852	date:	2025-05-13T00:00:00
db:	JVNDB	id:	JVNDB-2025-004475	date:	2025-05-08T00:00:00
db:	NVD	id:	CVE-2025-3988	date:	2025-04-27T22:15:15.037