CVE-2025-6401

CWE-4043 documents3 sources
Severity
5.1MEDIUM
EPSS
0.1%
top 70.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Totolink N300rhTotolink N300rh Firmware
Timeline
PublishedJun 21
Latest updateJun 23

Description

A vulnerability was found in TOTOLINK N300RH 6.1c.1390_B20191101. It has been classified as problematic. This affects an unknown part of the file /boafrm/formFilter of the component HTTP POST Message Handler. The manipulation of the argument url leads to denial of service. The exploit has been disclosed to the public and may be used.

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5totolink/n300rh6.1c.1390_B20191101
NVDtotolink/n300rh_firmware6.1c.1390_b20191101

🔴Vulnerability Details

2
GHSA
GHSA-vvr6-g6xc-j272: A vulnerability was found in TOTOLINK N300RH 62025-06-23
CVEList
TOTOLINK N300RH HTTP POST Message formFilter denial of service2025-06-21
CVE-2025-6401 (MEDIUM CVSS 5.1) | A vulnerability was found in TOTOLI | cvebase.io