Sign-up

ID

VAR-202506-0903


CVE

CVE-2025-6137


TITLE

TOTOLINK  of  t10  Buffer error vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2025-009657

DESCRIPTION

A vulnerability classified as critical has been found in TOTOLINK T10 4.1.8cu.5207. Affected is the function setWiFiScheduleCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument desc leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. TOTOLINK of t10 The firmware contains a buffer error vulnerability and a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. TOTOLINK T10 is a wireless network system router produced by China's TOTOLINK Electronics. The vulnerability is caused by the parameter desc of the function setWiFiScheduleCfg in the file /cgi-bin/cstecgi.cgi failing to correctly verify the length of the input data. Remote attackers can exploit this vulnerability to execute arbitrary code on the system or cause a denial of service attack

Trust: 2.16

sources: NVD: CVE-2025-6137 // JVNDB: JVNDB-2025-009657 // CNVD: CNVD-2025-14268

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2025-14268

AFFECTED PRODUCTS

vendor:totolinkmodel:t10scope:eqversion:4.1.8cu.5207_b20210320

Trust: 1.0

vendor:totolinkmodel:t10scope:eqversion:t10 firmware 4.1.8cu.5207 b20210320

Trust: 0.8

vendor:totolinkmodel:t10scope:eqversion: -

Trust: 0.8

vendor:totolinkmodel:t10scope: - version: -

Trust: 0.8

vendor:totolinkmodel:t10 4.1.8cu.5207scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2025-14268 // JVNDB: JVNDB-2025-009657 // NVD: CVE-2025-6137

CVSS

SEVERITY

CVSSV2

CVSSV3

cna@vuldb.com: CVE-2025-6137
value: HIGH

Trust: 1.0

OTHER: JVNDB-2025-009657
value: HIGH

Trust: 0.8

CNVD: CNVD-2025-14268
value: HIGH

Trust: 0.6

cna@vuldb.com: CVE-2025-6137
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

OTHER: JVNDB-2025-009657
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

CNVD: CNVD-2025-14268
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

cna@vuldb.com: CVE-2025-6137
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.1

Trust: 1.0

OTHER: JVNDB-2025-009657
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2025-14268 // JVNDB: JVNDB-2025-009657 // NVD: CVE-2025-6137

PROBLEMTYPE DATA

problemtype:CWE-120

Trust: 1.0

problemtype:CWE-119

Trust: 1.0

problemtype:Buffer error (CWE-119) [ others ]

Trust: 0.8

problemtype: Classic buffer overflow (CWE-120) [ others ]

Trust: 0.8

problemtype: Classic buffer overflow (CWE-120) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2025-009657 // NVD: CVE-2025-6137

PATCH

title:Patch for TOTOLINK T10 setWiFiScheduleCfg function buffer overflow vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/702356

Trust: 0.6

sources: CNVD: CNVD-2025-14268

EXTERNAL IDS

db:NVDid:CVE-2025-6137

Trust: 3.2

db:VULDBid:312606

Trust: 1.8

db:JVNDBid:JVNDB-2025-009657

Trust: 0.8

db:CNVDid:CNVD-2025-14268

Trust: 0.6

sources: CNVD: CNVD-2025-14268 // JVNDB: JVNDB-2025-009657 // NVD: CVE-2025-6137

REFERENCES

url:https://candle-throne-f75.notion.site/totolink-t10-setwifischedulecfg-20ddf0aa11858053a171f052787c202f

Trust: 2.4

url:https://vuldb.com/?id.312606

Trust: 1.8

url:https://vuldb.com/?submit.592911

Trust: 1.8

url:https://www.totolink.net/

Trust: 1.8

url:https://vuldb.com/?ctiid.312606

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2025-6137

Trust: 0.8

sources: CNVD: CNVD-2025-14268 // JVNDB: JVNDB-2025-009657 // NVD: CVE-2025-6137

SOURCES

db:CNVDid:CNVD-2025-14268
db:JVNDBid:JVNDB-2025-009657
db:NVDid:CVE-2025-6137

LAST UPDATE DATE

2025-07-26T23:20:45.392000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2025-14268date:2025-06-30T00:00:00
db:JVNDBid:JVNDB-2025-009657date:2025-07-23T07:56:00
db:NVDid:CVE-2025-6137date:2025-06-26T16:33:18.123

SOURCES RELEASE DATE

db:CNVDid:CNVD-2025-14268date:2025-06-26T00:00:00
db:JVNDBid:JVNDB-2025-009657date:2025-07-23T00:00:00
db:NVDid:CVE-2025-6137date:2025-06-16T20:15:28.040