CVE-2025-5600
published 2025-06-04CVE-2025-5600: A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This issue affects the function setLanguageCfg of…
critical9.3CVSS 4.0
AVNACLATNPRNUINVCHVIHVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This issue affects the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument LangType leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| pretix | pretix | >= 0 < 2026.1.2 | 2026.1.2 |
| pretix | pretix | >= 2026.2.0 < 2026.2.1 | 2026.2.1 |
| pretix | pretix | >= 2026.3.0 < 2026.3.1 | 2026.3.1 |
| totolink | ex1200t | — | — |
| totolink | ex1200t_firmware | — | — |