CVE-2025-22903

CWE-121Stack-based Buffer Overflow3 documents3 sources
Severity
4.6MEDIUM
EPSS
0.2%
top 63.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Totolink N600r Firmware
Timeline
PublishedApr 15

Description

TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a stack overflow via the pin parameter in the function setWiFiWpsConfig.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:LExploitability: 1.2 | Impact: 3.4

Affected Packages1 packages

NVDtotolink/n600r_firmware4.3.0cu.7647_b20210106

🔴Vulnerability Details

2
CVEList
CVE-2025-22903: TOTOLINK N600R V42025-04-15
GHSA
GHSA-r3xh-xmm6-qp4w: TOTOLINK N600R V42025-04-15
CVE-2025-22903 (MEDIUM CVSS 4.6) | TOTOLINK N600R V4.3.0cu.7647_B20210 | cvebase.io