ID
VAR-202505-1105
CVE
CVE-2025-45787
TITLE
TOTOLINK of A3100R Out-of-bounds write vulnerability in firmware
Trust: 0.8
sources:
JVNDB: JVNDB-2025-005251
DESCRIPTION
TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow viathe comment parameter in setIpPortFilterRules. TOTOLINK of A3100R An out-of-bounds write vulnerability exists in firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state
Trust: 1.62
sources:
NVD: CVE-2025-45787 //
JVNDB: JVNDB-2025-005251
AFFECTED PRODUCTS
| vendor: | totolink | model: | a3100r | scope: | eq | version: | 5.9c.1527 | Trust: 1.0 |
| vendor: | totolink | model: | a3100r | scope: | eq | version: | a3100r firmware 5.9c.1527 | Trust: 0.8 |
| vendor: | totolink | model: | a3100r | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | totolink | model: | a3100r | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2025-005251 //
NVD: CVE-2025-45787
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
JVNDB: JVNDB-2025-005251 //
NVD: CVE-2025-45787 //
NVD: CVE-2025-45787
PROBLEMTYPE DATA
| problemtype: | CWE-121 | Trust: 1.0 |
| problemtype: | CWE-787 | Trust: 1.0 |
| problemtype: | Stack-based buffer overflow (CWE-121) [ others ] | Trust: 0.8 |
| problemtype: | Out-of-bounds writing (CWE-787) [NVD evaluation ] | Trust: 0.8 |
sources:
JVNDB: JVNDB-2025-005251 //
NVD: CVE-2025-45787
EXTERNAL IDS
| db: | NVD | id: | CVE-2025-45787 | Trust: 2.6 |
| db: | JVNDB | id: | JVNDB-2025-005251 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2025-005251 //
NVD: CVE-2025-45787
REFERENCES
| url: | https://github.com/sunnyyangyaya/cuicuishark-sheep-fishiot/tree/main/totolink/a3100r-1 | Trust: 1.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2025-45787 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2025-005251 //
NVD: CVE-2025-45787
SOURCES
| db: | JVNDB | id: | JVNDB-2025-005251 |
| db: | NVD | id: | CVE-2025-45787 |
LAST UPDATE DATE
2025-05-22T22:54:46.759000+00:00
SOURCES UPDATE DATE
| db: | JVNDB | id: | JVNDB-2025-005251 | date: | 2025-05-19T11:58:00 |
| db: | NVD | id: | CVE-2025-45787 | date: | 2025-05-16T15:38:25.723 |
SOURCES RELEASE DATE
| db: | JVNDB | id: | JVNDB-2025-005251 | date: | 2025-05-19T00:00:00 |
| db: | NVD | id: | CVE-2025-45787 | date: | 2025-05-08T20:15:29.957 |